GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,775

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

114,402 advisories

Filter by severity

Sort by

Least recently updated

Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially... Moderate Unreviewed

CVE-2025-26507 was published Feb 14, 2025

IBM QRadar SIEM 7.5 is vulnerable to cross-site scripting. This vulnerability allows a privileged... Moderate Unreviewed

CVE-2024-56463 was published Feb 14, 2025

Improper Input Validation vulnerability in WatchGuard Fireware OS allows an attacker to... Moderate Unreviewed

CVE-2025-0178 was published Feb 14, 2025

IBM Power Hardware Management Console V10.3.1050.0 could allow an authenticated user to traverse... Moderate Unreviewed

CVE-2024-56477 was published Feb 14, 2025

IBM i 7.4 and 7.5 is vulnerable to a database access denial of service caused by a bypass of a... Moderate Unreviewed

CVE-2024-52895 was published Feb 14, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2025-1071 was published Feb 14, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2025-1239 was published Feb 14, 2025

Missing Authorization vulnerability in Northern Beaches Websites IdeaPush allows Exploiting... Moderate Unreviewed

CVE-2025-24607 was published Feb 14, 2025

Missing Authorization vulnerability in ashamil OPSI Israel Domestic Shipments allows Exploiting... Moderate Unreviewed

CVE-2025-23766 was published Feb 14, 2025

Missing Authorization vulnerability in Murali Push Notification for Post and BuddyPress allows... Moderate Unreviewed

CVE-2025-23771 was published Feb 14, 2025

Insertion of Sensitive Information Into Sent Data vulnerability in brandtoss WP Mailster allows... Moderate Unreviewed

CVE-2025-24567 was published Feb 14, 2025

Missing Authorization vulnerability in Mark Winiarski WPLingo allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-23534 was published Feb 14, 2025

Missing Authorization vulnerability in Ability, Inc Accessibility Suite by Online ADA allows... Moderate Unreviewed

CVE-2025-22698 was published Feb 14, 2025

Missing Authorization vulnerability in EPC Photography. This issue affects Photography: from n/a... Moderate Unreviewed

CVE-2025-22702 was published Feb 14, 2025

This vulnerability exists in RupeeWeb trading platform due to missing rate limiting on OTP... Moderate Unreviewed

CVE-2025-26524 was published Feb 14, 2025

Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed

CVE-2024-13791 was published Feb 14, 2025

The HurryTimer – An Scarcity and Urgency Countdown Timer for WordPress & WooCommerce plugin for... Moderate Unreviewed

CVE-2024-13735 was published Feb 14, 2025

Bit Assist plugin for WordPress is vulnerable to time-based SQL Injection via the ‘id’ parameter... Moderate Unreviewed

CVE-2025-0821 was published Feb 14, 2025

app/Model/Attribute.php in MISP before 2.4.198 ignores an ACL during a GUI attribute search. Moderate Unreviewed

CVE-2024-57969 was published Feb 14, 2025

An issue was discovered in Logpoint AgentX before 1.5.0. A vulnerability caused by limited access... Moderate Unreviewed

CVE-2025-26789 was published Feb 14, 2025

The Qubely – Advanced Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-9601 was published Feb 14, 2025

Out-of-bounds read vulnerability caused by improper checking of TCP MSS option values exists in... Moderate Unreviewed

CVE-2025-23406 was published Feb 14, 2025

The Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet... Moderate Unreviewed

CVE-2024-13641 was published Feb 14, 2025

The Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet... Moderate Unreviewed

CVE-2024-13692 was published Feb 14, 2025

The Forminator Forms WordPress plugin before 1.38.3 does not sanitise and escape some of its... Moderate Unreviewed

CVE-2024-7052 was published Feb 14, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

114,402 advisories