GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,883
Composer 5,065
Erlang 39
GitHub Actions 38
Go 2,700
Maven 6,139
npm 4,328
NuGet 761
pip 4,100
Pub 12
RubyGems 958
Rust 1,064
Swift 45

Unreviewed advisories

All unreviewed 278,799

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

526 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In Terminalfour 8 through 8.4.1.1, the userLevel parameter in the user management function is not... Critical Unreviewed

CVE-2025-58386 was published Dec 2, 2025

Primakon Pi Portal 1.0.18 API endpoints fail to enforce sufficient authorization checks when... Moderate Unreviewed

CVE-2025-64063 was published Nov 25, 2025

The Primakon Pi Portal 1.0.18 API /api/V2/pp_udfv_admin endpoint, fails to perform necessary... High Unreviewed

CVE-2025-64065 was published Nov 25, 2025

The Primakon Pi Portal 1.0.18 /api/V2/pp_users?email endpoint is used for user data filtering but... High Unreviewed

CVE-2025-64062 was published Nov 25, 2025

The UiPress lite | Effortless custom dashboards, admin themes and pages plugin for WordPress is... Moderate Unreviewed

CVE-2025-11815 was published Nov 21, 2025

Improper authorization in Dynamics OmniChannel SDK Storage Containers allows an unauthorized... High Unreviewed

CVE-2025-64655 was published Nov 21, 2025

The SiteSEO – SEO Simplified plugin for WordPress is vulnerable to Improper Authorization leading... Moderate Unreviewed

CVE-2025-13085 was published Nov 19, 2025

The SiteSEO – SEO Simplified plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed

CVE-2025-12814 was published Nov 19, 2025

The YITH WooCommerce Wishlist plugin for WordPress is vulnerable to authorization bypass in all... Moderate Unreviewed

CVE-2025-12777 was published Nov 19, 2025

The Image Gallery – Photo Grid & Video Gallery plugin for WordPress is vulnerable to arbitrary... Moderate Unreviewed

CVE-2025-12494 was published Nov 15, 2025

The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-11521 was published Nov 11, 2025

Incorrect security UI in Omnibox in Google Chrome on Android prior to 142.0.7444.59 allowed a... Moderate Unreviewed

CVE-2025-12435 was published Nov 10, 2025

In pig-mesh In Pig version 3.8.2 and below, within the Token Management function under the System... Critical Unreviewed

CVE-2025-63691 was published Nov 7, 2025

A vulnerability was identified in newbee-mall-plus up to 2.4.1. This vulnerability affects the... Moderate Unreviewed

CVE-2025-12854 was published Nov 7, 2025

The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is... High Unreviewed

CVE-2025-4519 was published Nov 7, 2025

The Better Find and Replace – AI-Powered Suggestions plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12360 was published Nov 6, 2025

A vulnerability was identified in fushengqian fuint up to... Low Unreviewed

CVE-2025-12623 was published Nov 3, 2025

The SiteSEO – SEO Simplified plugin for WordPress is vulnerable to Missing Authorization in... Moderate Unreviewed

CVE-2025-12367 was published Nov 1, 2025

The Document Library Lite plugin for WordPress is vulnerable to Improper Authorization in all... Moderate Unreviewed

CVE-2025-11174 was published Nov 1, 2025

A vulnerability was detected in Bdtask Pharmacy Management System up to 9.4. Affected is an... Moderate Unreviewed

CVE-2025-12288 was published Oct 27, 2025

A security flaw has been discovered in code-projects Client Details System 1.0. The impacted... Moderate Unreviewed

CVE-2025-12283 was published Oct 27, 2025

The Tutor LMS Pro – eLearning and online course solution plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-6639 was published Oct 25, 2025

The WP VR – 360 Panorama and Free Virtual Tour Builder For WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2025-12005 was published Oct 25, 2025

The Password Protected plugin for WordPress is vulnerable to authorization bypass via IP address... Low Unreviewed

CVE-2025-11244 was published Oct 25, 2025

The GenerateBlocks plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed

CVE-2025-11879 was published Oct 25, 2025

Previous1…22 Next

Previous 1 2 3 4 5 … 21 22 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

526 advisories