Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,778
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,389 advisories

Loading
Missing Authorization vulnerability in Melodic Media Slide Banners allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-25120 was published Feb 7, 2025
Missing Authorization vulnerability in Metagauss Event Kikfyre allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-25110 was published Feb 7, 2025
Missing Authorization vulnerability in DeannaS Embed RSS allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-25081 was published Feb 7, 2025
An issue has been discovered in GitLab EE affecting all versions starting from 15.2 prior to 16.9... Moderate Unreviewed
CVE-2024-1539 was published Feb 5, 2025
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.0 prior to... Moderate Unreviewed
CVE-2024-3976 was published Feb 5, 2025
Missing Authorization vulnerability in FameThemes OnePress allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-22643 was published Feb 4, 2025
Missing Authorization vulnerability in Ksher Ksher allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-22730 was published Feb 4, 2025
Missing Authorization vulnerability in EmbedPress Document Block – Upload & Embed Docs. This... Moderate Unreviewed
CVE-2025-22696 was published Feb 4, 2025
The SocialV - Social Network and Community BuddyPress Theme theme for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-13529 was published Feb 4, 2025
Digiever DS-2105 Pro 3.1.0.71-11 devices allow time_tzsetup.cgi Command Injection. NOTE: This... Moderate Unreviewed
CVE-2023-52163 was published Feb 3, 2025
An issue in Geovision GV-ASWeb with version 6.1.0.0 or less allows unauthorized attackers with... Moderate Unreviewed
CVE-2024-56902 was published Feb 3, 2025
The Eventer plugin for WordPress is vulnerable to unauthorized access of data due to a missing... Moderate Unreviewed
CVE-2024-11134 was published Feb 3, 2025
The Eventer plugin for WordPress is vulnerable to unauthorized access of data due to a missing... Moderate Unreviewed
CVE-2024-11133 was published Feb 3, 2025
Missing Authorization vulnerability in Realwebcare Image Gallery – Responsive Photo Gallery... Moderate Unreviewed
CVE-2025-24697 was published Feb 3, 2025
Missing Authorization vulnerability in theme funda Setup Default Featured Image allows Exploiting... Moderate Unreviewed
CVE-2025-24642 was published Feb 3, 2025
Missing Authorization vulnerability in Amento Tech Pvt ltd WPGuppy allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-24643 was published Feb 3, 2025
Missing Authorization vulnerability in Hemnath Mouli WC Wallet allows Accessing Functionality Not... Moderate Unreviewed
CVE-2025-23527 was published Feb 3, 2025
Missing Authorization vulnerability in By Averta Shortcodes and extra features for Phlox theme... Moderate Unreviewed
CVE-2024-50500 was published Feb 3, 2025
Missing Authorization vulnerability in UIUX Lab Uix Shortcodes allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-22677 was published Feb 3, 2025
Missing Authorization vulnerability in theDotstore Hide Shipping Method For WooCommerce. This... Moderate Unreviewed
CVE-2025-22694 was published Feb 3, 2025
Missing Authorization vulnerability in Xfinity Soft Content Cloner allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-22681 was published Feb 3, 2025
Missing Authorization vulnerability in Pixelite Meta Tag Manager. This issue affects Meta Tag... Moderate Unreviewed
CVE-2025-22260 was published Feb 3, 2025
Missing Authorization vulnerability in GSheetConnector CF7 Google Sheets Connector allows... Moderate Unreviewed
CVE-2025-22686 was published Feb 3, 2025
The WooCommerce Support Ticket System plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed
CVE-2024-13775 was published Feb 1, 2025
The Custom Related Posts plugin for WordPress is vulnerable to unauthorized access & modification... Moderate Unreviewed
CVE-2024-12825 was published Feb 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database