Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,342
Erlang
31
GitHub Actions
22
Go
2,106
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

113,507 advisories

Loading
The Drag and Drop Multiple File Upload – Contact Form 7 plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-12267 was published Jan 31, 2025
The eHive Objects Image Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-13662 was published Jan 31, 2025
The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for... Moderate Unreviewed
CVE-2024-12037 was published Jan 31, 2025
The The AI Infographic Maker plugin for WordPress is vulnerable to arbitrary shortcode execution... Moderate Unreviewed
CVE-2024-12415 was published Jan 31, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in UkrSolution Barcode Generator... Moderate Unreviewed
CVE-2025-24597 was published Jan 31, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-23987 was published Jan 31, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Brainvireinfo Dynamic URL SEO allows Cross... Moderate Unreviewed
CVE-2025-23985 was published Jan 31, 2025
The WP DataTable plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’... Moderate Unreviewed
CVE-2024-13566 was published Jan 31, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-22757 was published Jan 31, 2025
The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is... Moderate Unreviewed
CVE-2024-13157 was published Jan 31, 2025
Missing Authorization vulnerability in MagePeople Team Booking and Rental Manager allows... Moderate Unreviewed
CVE-2025-22720 was published Jan 31, 2025
The Order Export for WooCommerce plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2024-13623 was published Jan 31, 2025
The Custom Login Page Styler – Limit Login Attempts – Restrict Content With Login – Redirect... Moderate Unreviewed
CVE-2024-13530 was published Jan 31, 2025
Missing Authorization vulnerability in mgplugin EMI Calculator allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-22265 was published Jan 31, 2025
Server-Side Request Forgery (SSRF) vulnerability in NotFound Oshine Modules. This issue affects... Moderate Unreviewed
CVE-2024-44055 was published Jan 31, 2025
Bentley Systems ProjectWise Integration Server before 10.00.03.288 allows unintended SQL query... Moderate Unreviewed
CVE-2024-53007 was published Jan 31, 2025
The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed
CVE-2024-11886 was published Jan 31, 2025
The Ni Sales Commission For WooCommerce plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed
CVE-2024-13424 was published Jan 31, 2025
A UAA configured with multiple identity zones, does not properly validate session information... Moderate Unreviewed
CVE-2025-22216 was published Jan 31, 2025
The Ticketmeo – Sell Tickets – Event Ticketing plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed
CVE-2025-0507 was published Jan 31, 2025
The HT Event – WordPress Event Manager Plugin for Elementor plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-13216 was published Jan 31, 2025
The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-13717 was published Jan 31, 2025
The Food Menu – Restaurant Menu & Online Ordering for WooCommerce plugin for WordPress is... Moderate Unreviewed
CVE-2024-13415 was published Jan 31, 2025
The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for... Moderate Unreviewed
CVE-2024-10867 was published Jan 31, 2025
The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is... Moderate Unreviewed
CVE-2025-0470 was published Jan 31, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database