Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,034
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,584 advisories

Loading
LibreNMS stored Cross-site Scripting vulnerability in poller group name Low
CVE-2025-47931 was published for librenms/librenms (Composer) May 19, 2025
Fewword
Credited to Fewword
The WordPress WP-Advanced-Search WordPress plugin before 3.3.9.3 does not sanitise and escape... Low Unreviewed
CVE-2024-10554 was published Mar 25, 2025
The Photo Gallery, Sliders, Proofing and WordPress plugin before 3.59.9 does not sanitise and... Low Unreviewed
CVE-2024-10545 was published Feb 25, 2025
The YaDisk Files WordPress plugin through 1.2.5 does not sanitise and escape some of its settings... Low Unreviewed
CVE-2024-10710 was published Nov 25, 2024
The Button contact VR WordPress plugin through 4.7 does not sanitise and escape some of its... Low Unreviewed
CVE-2024-2220 was published May 23, 2024
The Photo Gallery, Images, Slider in Rbs Image Gallery WordPress plugin before 3.2.22 does not... Low Unreviewed
CVE-2024-10102 was published Jan 7, 2025
The Photo Gallery by 10Web WordPress plugin before 1.8.33 does not sanitise and escape some of... Low Unreviewed
CVE-2024-13124 was published Mar 24, 2025
The Crelly Slider WordPress plugin before 1.4.7 does not sanitise and escape some of its settings... Low Unreviewed
CVE-2024-13116 was published Jan 27, 2025
The Form Maker by 10Web WordPress plugin before 1.15.30 does not sanitise and escape some of its... Low Unreviewed
CVE-2024-10558 was published Mar 24, 2025
The EasyEvent WordPress plugin through 1.0.0 does not sanitise and escape some of its settings,... Low Unreviewed
CVE-2024-3628 was published May 7, 2024
Trix vulnerable to Cross-site Scripting on copy & paste Low
CVE-2025-46812 was published for trix (npm) May 8, 2025
The Social Media Share Buttons & Social Sharing Icons WordPress plugin before 2.8.9 does not... Low Unreviewed
CVE-2024-2118 was published Apr 17, 2024
The Floating Chat Widget: Contact Chat Icons, WhatsApp, Telegram Chat, Line Messenger, WeChat,... Low Unreviewed
CVE-2024-2972 was published Apr 24, 2024
The Form Maker by 10Web WordPress plugin before 1.15.31 does not sanitise and escape some of its... Low Unreviewed
CVE-2024-10562 was published Jan 7, 2025
The Calculated Fields Form WordPress plugin before 5.2.62 does not sanitise and escape some of... Low Unreviewed
CVE-2024-13381 was published May 1, 2025
The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings,... Low Unreviewed
CVE-2025-3504 was published May 1, 2025
The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings,... Low Unreviewed
CVE-2025-3502 was published May 1, 2025
The Ajax Search Lite WordPress plugin before 4.12.5 does not sanitise and escape some of its... Low Unreviewed
CVE-2024-13585 was published Feb 21, 2025
The Newsletter WordPress plugin before 8.7.1 does not sanitise and escape some of its settings,... Low Unreviewed
CVE-2025-3583 was published May 5, 2025
The Carousel, Slider, Gallery by WP Carousel WordPress plugin before 2.7.4 does not sanitise and... Low Unreviewed
CVE-2024-13314 was published Feb 21, 2025
The Smart Maintenance Mode WordPress plugin before 1.5.2 does not sanitise and escape some of its... Low Unreviewed
CVE-2024-12683 was published Mar 26, 2025
The Favorites WordPress plugin before 2.3.5 does not sanitise and escape some of its settings,... Low Unreviewed
CVE-2025-1452 was published Mar 25, 2025
Dell Storage Center - Dell Storage Manager, version(s) 21.0.20, contain(s) an Improper... Low Unreviewed
CVE-2025-23379 was published May 6, 2025
The Social Share Buttons, Social Sharing Icons, Click to Tweet — Social Media Plugin by Social... Low Unreviewed
CVE-2024-13615 was published Mar 11, 2025
The WordPress Tag, Category, and Taxonomy Manager WordPress plugin before 3.30.0 does not... Low Unreviewed
CVE-2025-0627 was published Apr 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database