GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,776
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,124
npm 4,308
NuGet 760
pip 4,081
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,310

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

5,474 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The AI ChatBot with ChatGPT and Content Generator by AYS plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-13381 was published Nov 27, 2025

The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2025-10476 was published Nov 27, 2025

The Hide Category by User Role for WooCommerce plugin for WordPress is vulnerable to Missing... Moderate Unreviewed

CVE-2025-13441 was published Nov 27, 2025

The Reuters Direct plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed

CVE-2025-12579 was published Nov 27, 2025

The Autochat Automatic Conversation plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-12043 was published Nov 25, 2025

The Social Images Widget plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed

CVE-2025-13386 was published Nov 25, 2025

The Chamber Dashboard Business Directory plugin for WordPress is vulnerable to unauthorized data... Moderate Unreviewed

CVE-2025-13414 was published Nov 25, 2025

The Ace Post Type Builder plugin for WordPress is vulnerable to unauthorized custom taxonomy... Moderate Unreviewed

CVE-2025-13405 was published Nov 25, 2025

The atec Duplicate Page & Post plugin for WordPress is vulnerable to unauthorized post... Moderate Unreviewed

CVE-2025-13404 was published Nov 25, 2025

The Refund Request for WooCommerce plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-12634 was published Nov 25, 2025

A user with access to the cluster with a limited set of privilege actions may be able to... Low Unreviewed

CVE-2025-13643 was published Nov 25, 2025

The Search Exclude plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed

CVE-2025-10646 was published Nov 25, 2025

The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-13558 was published Nov 25, 2025

Inadequate access control vulnerability in Davantis DFUSION v6.177.7, which allows unauthorised... High Unreviewed

CVE-2025-41016 was published Nov 24, 2025

Inadequate access control vulnerability in Davantis DDFUSION v6.177.7, which allows unauthorised... Moderate Unreviewed

CVE-2025-41017 was published Nov 24, 2025

The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is... Moderate Unreviewed

CVE-2025-12877 was published Nov 22, 2025

The GSheetConnector For Ninja Forms plugin for WordPress is vulnerable to unauthorized access of... Moderate Unreviewed

CVE-2025-13136 was published Nov 22, 2025

The Booking Calendar Contact Form plugin for WordPress is vulnerable to Missing Authorization in... Moderate Unreviewed

CVE-2025-13318 was published Nov 22, 2025

The CP Contact Form with PayPal plugin for WordPress is vulnerable to Missing Authorization in... High Unreviewed

CVE-2025-13384 was published Nov 22, 2025

The Appointment Booking Calendar plugin for WordPress is vulnerable to Missing Authorization in... Moderate Unreviewed

CVE-2025-13317 was published Nov 22, 2025

Missing Authorization vulnerability in WebToffee Accessibility Toolkit by WebYes accessibility... Moderate Unreviewed

CVE-2025-66112 was published Nov 21, 2025

Missing Authorization vulnerability in ThemeAtelier Better Chat Support for Messenger better-chat... Moderate Unreviewed

CVE-2025-66113 was published Nov 21, 2025

Missing Authorization vulnerability in theme funda Show Variations as Single Products Woocommerce... Unknown Unreviewed

CVE-2025-66114 was published Nov 21, 2025

Missing Authorization vulnerability in Scott Paterson Subscriptions & Memberships for PayPal... Unknown Unreviewed

CVE-2025-66107 was published Nov 21, 2025

Missing Authorization vulnerability in octolize Cart Weight for WooCommerce woo-cart-weight... Unknown Unreviewed

CVE-2025-66109 was published Nov 21, 2025

Previous1…219 Next

Previous 1 2 3 4 5 … 218 219 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,474 advisories