GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,113
Composer 5,090
Erlang 40
GitHub Actions 38
Go 2,766
Maven 6,180
npm 4,371
NuGet 767
pip 4,144
Pub 12
RubyGems 962
Rust 1,070
Swift 45

Unreviewed advisories

All unreviewed 281,786

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

146,232 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Image Photo Gallery Final Tiles Grid plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-13693 was published Dec 21, 2025

A security flaw has been discovered in Campcodes Complete Online Beauty Parlor Management System... Moderate Unreviewed

CVE-2025-14990 was published Dec 21, 2025

A weakness has been identified in Campcodes Complete Online Beauty Parlor Management System 1.0.... Moderate Unreviewed

CVE-2025-14991 was published Dec 21, 2025

The Product Table for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2025-12398 was published Dec 21, 2025

The Web to SugarCRM Lead plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-13361 was published Dec 21, 2025

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction &... Moderate Unreviewed

CVE-2025-13220 was published Dec 21, 2025

The WC Builder – WooCommerce Page Builder for WPBakery plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-14054 was published Dec 21, 2025

The Frontend Post Submission Manager Lite plugin for WordPress is vulnerable to Missing... Moderate Unreviewed

CVE-2025-14080 was published Dec 21, 2025

The WishSuite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-13838 was published Dec 21, 2025

The Tainacan plugin for WordPress is vulnerable to unauthorized metadata section creation due to... Moderate Unreviewed

CVE-2025-14043 was published Dec 21, 2025

Missing Authorization vulnerability in HappyFiles HappyFiles Pro allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2023-25445 was published Dec 21, 2025

The Five Star Restaurant Reservations – WordPress Booking Plugin plugin for WordPress is... Moderate Unreviewed

CVE-2025-11496 was published Dec 21, 2025

Vulnerability in mojofywp WP Affiliate Disclosure wp-affiliate-disclosure.This issue affects WP... Moderate Unreviewed

CVE-2023-47232 was published Dec 21, 2025

A vulnerability was identified in Campcodes Complete Online Beauty Parlor Management System 1.0.... Moderate Unreviewed

CVE-2025-14989 was published Dec 21, 2025

Missing Authorization vulnerability in Mapro Collins Magazine Edge allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2023-25068 was published Dec 21, 2025

The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Insecure... Moderate Unreviewed

CVE-2025-7733 was published Dec 20, 2025

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction &... Moderate Unreviewed

CVE-2025-12492 was published Dec 20, 2025

The FiboSearch – Ajax Search for WooCommerce plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2025-14298 was published Dec 20, 2025

The Attachments Handler plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-12581 was published Dec 20, 2025

The Pretty Google Calendar plugin for WordPress is vulnerable to unauthorized access of data due... Moderate Unreviewed

CVE-2025-12898 was published Dec 20, 2025

The WP Hallo Welt plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-13365 was published Dec 20, 2025

The Overstock Affiliate Links plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2025-13624 was published Dec 20, 2025

The Quran Gateway plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-14164 was published Dec 20, 2025

The WP DB Booster plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-14168 was published Dec 20, 2025

The F70 Lead Document Download plugin for WordPress is vulnerable to unauthorized access of data... Moderate Unreviewed

CVE-2025-14633 was published Dec 20, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

146,232 advisories