Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,717
Maven
5,000+
npm
4,328
NuGet
761
pip
4,105
Pub
12
RubyGems
958
Rust
1,065
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

133,465 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject... Moderate Unreviewed
CVE-2025-38678 was published Sep 3, 2025
In the Linux kernel, the following vulnerability has been resolved: bonding: check xdp prog when... Moderate Unreviewed
CVE-2025-22105 was published Apr 16, 2025
In the Linux kernel, the following vulnerability has been resolved: block: fix race between... Moderate Unreviewed
CVE-2025-38073 was published Jun 18, 2025
In the Linux kernel, the following vulnerability has been resolved: net: macb: fix... Moderate Unreviewed
CVE-2025-39805 was published Sep 16, 2025
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_set_pipapo:... Moderate Unreviewed
CVE-2024-57947 was published Jan 23, 2025
In the Linux kernel, the following vulnerability has been resolved: espintcp: fix skb leaks A... Moderate Unreviewed
CVE-2025-38057 was published Jun 18, 2025
In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Set phy-... Moderate Unreviewed
CVE-2024-47666 was published Oct 9, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix crash on racing... Moderate Unreviewed
CVE-2024-37354 was published Jun 25, 2024
A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Impacted is the function... Moderate Unreviewed
CVE-2025-14139 was published Dec 6, 2025
The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin... Moderate Unreviewed
CVE-2025-13748 was published Dec 6, 2025
The TR Timthumb plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcode... Moderate Unreviewed
CVE-2025-13899 was published Dec 6, 2025
The RevInsite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `token`... Moderate Unreviewed
CVE-2025-13863 was published Dec 6, 2025
The Extra Post Images plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-13856 was published Dec 6, 2025
The Social Feed Gallery Portfolio plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2025-13896 was published Dec 6, 2025
The Yet Another WebClap for WordPress plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2025-13857 was published Dec 6, 2025
The Ultra Skype Button plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-13898 was published Dec 6, 2025
A vulnerability has been found in fit2cloud Halo 2.21.10. Impacted is an unknown function. The... Moderate Unreviewed
CVE-2025-14117 was published Dec 6, 2025
The CSV Sumotto plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `... Moderate Unreviewed
CVE-2025-13894 was published Dec 6, 2025
The CSS3 Buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed
CVE-2025-13907 was published Dec 6, 2025
The Application Passwords plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed
CVE-2025-13308 was published Dec 6, 2025
The WP Landing Page plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed
CVE-2025-13629 was published Dec 6, 2025
The Helloprint plugin for WordPress is vulnerable to Missing Authorization in versions up to, and... Moderate Unreviewed
CVE-2025-13666 was published Dec 6, 2025
The Live Sales Notification for Woocommerce – Woomotiv plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-13137 was published Dec 6, 2025
The Accessiy By CodeConfig Accessibility – Easy One-Click Accessibility Toolbar That Truly... Moderate Unreviewed
CVE-2025-13309 was published Dec 6, 2025
The myLCO plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `$_SERVER[... Moderate Unreviewed
CVE-2025-13626 was published Dec 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database