GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,408
Composer 4,386
Erlang 33
GitHub Actions 22
Go 2,144
Maven 5,315
npm 3,808
NuGet 687
pip 3,480
Pub 12
RubyGems 897
Rust 898
Swift 38

Unreviewed advisories

All unreviewed 245,873

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,455 advisories

Filter by severity

Sort by

Least recently updated

The Newsmatic theme for WordPress is vulnerable to Sensitive Information Exposure in all versions... Moderate Unreviewed

CVE-2024-1587 was published Apr 9, 2024

A Broken Authorization schema exists where any authenticated user could download IOA script and... Moderate Unreviewed

CVE-2025-1091 was published Feb 26, 2025

The ElementsKit Elementor addons plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2025-0968 was published Feb 19, 2025

Missing Authorization vulnerability in WP Chill Strong Testimonials allows Accessing... Moderate Unreviewed

CVE-2025-26975 was published Feb 25, 2025

Missing Authorization vulnerability in enituretechnology Small Package Quotes – Unishippers... Moderate Unreviewed

CVE-2025-26960 was published Feb 25, 2025

Missing Authorization vulnerability in Anton Vanyukov Market Exporter allows Exploiting... Moderate Unreviewed

CVE-2025-26995 was published Feb 25, 2025

Missing Authorization vulnerability in NotFound Pie Register Premium. This issue affects Pie... Moderate Unreviewed

CVE-2025-26948 was published Feb 25, 2025

Missing Authorization vulnerability in xfinitysoft Order Limit for WooCommerce allows Exploiting... Moderate Unreviewed

CVE-2025-26928 was published Feb 25, 2025

Missing Authorization vulnerability in George Pattichis Simple Photo Feed allows Exploiting... Moderate Unreviewed

CVE-2025-27000 was published Feb 25, 2025

Missing Authorization vulnerability in WPZOOM Recipe Card Blocks for Gutenberg & Elementor allows... Moderate Unreviewed

CVE-2025-26983 was published Feb 25, 2025

Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg allows... Moderate Unreviewed

CVE-2025-26871 was published Feb 25, 2025

The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13229 was published Feb 13, 2025

The Puzzles | WP Magazine / Review with Store WordPress Theme + RTL theme for WordPress is... Moderate Unreviewed

CVE-2024-13769 was published Feb 12, 2025

Missing Authorization vulnerability in Hardik Sticky Header On Scroll allows Exploiting... Moderate Unreviewed

CVE-2025-27356 was published Feb 24, 2025

Missing Authorization vulnerability in bPlugins Animated Text Block allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-26883 was published Feb 24, 2025

Missing Authorization vulnerability in platcom WP-Asambleas allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-27294 was published Feb 24, 2025

Missing Authorization vulnerability in enituretechnology Distance Based Shipping Calculator... Moderate Unreviewed

CVE-2025-26764 was published Feb 22, 2025

Missing Authorization vulnerability in appsbd Vitepos allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2025-26750 was published Feb 22, 2025

The Event Tickets and Registration plugin for WordPress is vulnerable to unauthorized loss of... Moderate Unreviewed

CVE-2025-1402 was published Feb 21, 2025

Missing Authorization vulnerability in Wpmet Metform Elementor Contact Form Builder.This issue... Moderate Unreviewed

CVE-2024-33570 was published May 6, 2024

The Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported) plugin for WordPress is... Moderate Unreviewed

CVE-2024-13520 was published Feb 20, 2025

The LTL Freight Quotes – GlobalTranz Edition plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-1483 was published Feb 20, 2025

The product does not perform an authorization check when an actor attempts to access a resource... Moderate Unreviewed

CVE-2024-37363 was published Feb 20, 2025

The WordPress Portfolio Builder – Portfolio Gallery plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13231 was published Feb 19, 2025

The Raptive Ads plugin for WordPress is vulnerable to unauthorized access due to a missing... Moderate Unreviewed

CVE-2024-13364 was published Feb 19, 2025

Previous 1 2 3 4 5 … 98 99 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,455 advisories