Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,450
Erlang
33
GitHub Actions
22
Go
2,150
Maven
5,000+
npm
3,814
NuGet
689
pip
3,487
Pub
12
RubyGems
902
Rust
900
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,471 advisories

Loading
The VW Storefront theme for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed
CVE-2024-13686 was published Mar 4, 2025
Missing Authorization vulnerability in Alex Volkov WAH Forms allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-23763 was published Mar 3, 2025
Missing Authorization vulnerability in NotFound WP Journal allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-23613 was published Mar 3, 2025
Missing Authorization vulnerability in NotFound Interactive Page Hierarchy allows Exploiting... Moderate Unreviewed
CVE-2025-23615 was published Mar 3, 2025
Missing Authorization vulnerability in tsecher ts-tree allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-23515 was published Mar 3, 2025
Missing Authorization vulnerability in radicaldesigns radSLIDE allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-23440 was published Mar 3, 2025
The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-1404 was published Mar 1, 2025
The IP2Location Redirection plugin for WordPress is vulnerable to unauthorized access of data due... Moderate Unreviewed
CVE-2025-1502 was published Mar 1, 2025
The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for... Moderate Unreviewed
CVE-2024-13358 was published Mar 1, 2025
The Booking Calendar and Notification plugin for WordPress is vulnerable to unauthorized access,... Moderate Unreviewed
CVE-2024-13746 was published Mar 1, 2025
The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for... Moderate Unreviewed
CVE-2025-1780 was published Mar 1, 2025
The NextMove Lite – Thank You Page for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-10860 was published Feb 28, 2025
The Forex Calculators plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2024-13716 was published Feb 28, 2025
The Cardealer theme for WordPress is vulnerable to unauthorized modification of data and loss of... Moderate Unreviewed
CVE-2025-1681 was published Feb 28, 2025
A Broken Authorization schema exists where any authenticated user could download IOA script and... Moderate Unreviewed
CVE-2025-1091 was published Feb 26, 2025
Missing Authorization vulnerability in George Pattichis Simple Photo Feed allows Exploiting... Moderate Unreviewed
CVE-2025-27000 was published Feb 25, 2025
Missing Authorization vulnerability in Anton Vanyukov Market Exporter allows Exploiting... Moderate Unreviewed
CVE-2025-26995 was published Feb 25, 2025
Missing Authorization vulnerability in WPZOOM Recipe Card Blocks for Gutenberg & Elementor allows... Moderate Unreviewed
CVE-2025-26983 was published Feb 25, 2025
Missing Authorization vulnerability in enituretechnology Small Package Quotes – Unishippers... Moderate Unreviewed
CVE-2025-26960 was published Feb 25, 2025
Missing Authorization vulnerability in WP Chill Strong Testimonials allows Accessing... Moderate Unreviewed
CVE-2025-26975 was published Feb 25, 2025
Missing Authorization vulnerability in xfinitysoft Order Limit for WooCommerce allows Exploiting... Moderate Unreviewed
CVE-2025-26928 was published Feb 25, 2025
Missing Authorization vulnerability in NotFound Pie Register Premium. This issue affects Pie... Moderate Unreviewed
CVE-2025-26948 was published Feb 25, 2025
Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg allows... Moderate Unreviewed
CVE-2025-26871 was published Feb 25, 2025
The Enfold theme for WordPress is vulnerable to unauthorized access of data due to a missing... Moderate Unreviewed
CVE-2024-13693 was published Feb 25, 2025
Missing Authorization vulnerability in Hardik Sticky Header On Scroll allows Exploiting... Moderate Unreviewed
CVE-2025-27356 was published Feb 24, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database