Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,681
Maven
5,000+
npm
4,309
NuGet
760
pip
4,083
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,337 advisories

Loading
The Favorites WordPress plugin before 2.3.5 does not sanitise and escape some of its settings,... Low Unreviewed
CVE-2025-1452 was published Mar 25, 2025
The Form Maker by 10Web WordPress plugin before 1.15.30 does not sanitise and escape some of its... Low Unreviewed
CVE-2024-10560 was published Mar 25, 2025
The AFI WordPress plugin before 1.100.0 does not sanitise and escape some of its settings, which... Low Unreviewed
CVE-2024-13122 was published Mar 25, 2025
The AFI WordPress plugin before 1.100.0 does not sanitise and escape some of its settings, which... Low Unreviewed
CVE-2024-13123 was published Mar 25, 2025
The WordPress WP-Advanced-Search WordPress plugin before 3.3.9.3 does not sanitise and escape... Low Unreviewed
CVE-2024-10554 was published Mar 25, 2025
The Simple Banner WordPress plugin before 3.0.4 does not sanitise and escape some of its... Low Unreviewed
CVE-2024-12769 was published Mar 25, 2025
The Slider, Gallery, and Carousel by MetaSlider WordPress plugin before 3.95.0 does not sanitise... Low Unreviewed
CVE-2025-1062 was published Mar 24, 2025
The Slider, Gallery, and Carousel by MetaSlider WordPress plugin before 3.95.0 does not sanitise... Low Unreviewed
CVE-2025-1203 was published Mar 24, 2025
The Form Maker by 10Web WordPress plugin before 1.15.30 does not sanitise and escape some of its... Low Unreviewed
CVE-2024-10558 was published Mar 24, 2025
The Photo Gallery by 10Web WordPress plugin before 1.8.33 does not sanitise and escape some of... Low Unreviewed
CVE-2024-13124 was published Mar 24, 2025
An issue was discovered in OpenSlides before 4.2.5. When creating new chats via the chat_group... Low Unreviewed
CVE-2025-30345 was published Mar 21, 2025
LocalAI version v2.19.4 (af0545834fd565ab56af0b9348550ca9c3cb5349) contains a vulnerability where... Low Unreviewed
CVE-2024-9901 was published Mar 20, 2025
A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2... Low Unreviewed
CVE-2024-10721 was published Mar 20, 2025
A reflected cross-site scripting (XSS) vulnerability exists in phpipam/phpipam versions 1.5.0... Low Unreviewed
CVE-2024-10727 was published Mar 20, 2025
A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2... Low Unreviewed
CVE-2024-10723 was published Mar 20, 2025
A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. The... Low Unreviewed
CVE-2024-10722 was published Mar 20, 2025
A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2,... Low Unreviewed
CVE-2024-10724 was published Mar 20, 2025
A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. This... Low Unreviewed
CVE-2024-10725 was published Mar 20, 2025
A stored cross-site scripting (XSS) vulnerability exists in phpipam version 1.5.2, specifically... Low Unreviewed
CVE-2024-10719 was published Mar 20, 2025
The GDPR Cookie Compliance WordPress plugin before 4.15.9 does not sanitise and escape some of... Low Unreviewed
CVE-2025-1623 was published Mar 16, 2025
The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of... Low Unreviewed
CVE-2025-1622 was published Mar 16, 2025
The GDPR Cookie Compliance WordPress plugin before 4.15.9 does not sanitise and escape some of... Low Unreviewed
CVE-2025-1624 was published Mar 16, 2025
The Social Share Buttons, Social Sharing Icons, Click to Tweet — Social Media Plugin by Social... Low Unreviewed
CVE-2024-13615 was published Mar 11, 2025
In the "/EPMUI/ModalDlgHandler.ashx?value=showReadonlyDlg" endpoint, it is possible to inject... Low Unreviewed
CVE-2025-22272 was published Feb 28, 2025
The Photo Gallery, Sliders, Proofing and WordPress plugin before 3.59.9 does not sanitise and... Low Unreviewed
CVE-2024-10545 was published Feb 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database