Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,386
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,480
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,927 advisories

Loading
An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker... High Unreviewed
CVE-2022-45636 was published Mar 21, 2023
The Newsmatic theme for WordPress is vulnerable to Sensitive Information Exposure in all versions... Moderate Unreviewed
CVE-2024-1587 was published Apr 9, 2024
A Broken Authorization schema exists where any authenticated user could download IOA script and... Moderate Unreviewed
CVE-2025-1091 was published Feb 26, 2025
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2025-0968 was published Feb 19, 2025
Missing permission checks in Jenkins Chaos Monkey Plugin High
CVE-2020-2322 was published for io.jenkins.plugins:chaos-monkey (Maven) May 24, 2022
NotMyFault anonymous-nlp-student
Missing Authorization vulnerability in WP Chill Strong Testimonials allows Accessing... Moderate Unreviewed
CVE-2025-26975 was published Feb 25, 2025
Missing Authorization vulnerability in enituretechnology Small Package Quotes – Unishippers... Moderate Unreviewed
CVE-2025-26960 was published Feb 25, 2025
Missing Authorization vulnerability in Anton Vanyukov Market Exporter allows Exploiting... Moderate Unreviewed
CVE-2025-26995 was published Feb 25, 2025
Missing Authorization vulnerability in NotFound Pie Register Premium. This issue affects Pie... Moderate Unreviewed
CVE-2025-26948 was published Feb 25, 2025
Missing Authorization vulnerability in xfinitysoft Order Limit for WooCommerce allows Exploiting... Moderate Unreviewed
CVE-2025-26928 was published Feb 25, 2025
Missing Authorization vulnerability in George Pattichis Simple Photo Feed allows Exploiting... Moderate Unreviewed
CVE-2025-27000 was published Feb 25, 2025
Missing Authorization vulnerability in WPZOOM Recipe Card Blocks for Gutenberg & Elementor allows... Moderate Unreviewed
CVE-2025-26983 was published Feb 25, 2025
Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg allows... Moderate Unreviewed
CVE-2025-26871 was published Feb 25, 2025
The HUAWEI Messaging app has a vulnerability of unauthorized file access. Successful exploitation... High Unreviewed
CVE-2022-48350 was published Mar 28, 2023
The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-13229 was published Feb 13, 2025
The Puzzles | WP Magazine / Review with Store WordPress Theme + RTL theme for WordPress is... Moderate Unreviewed
CVE-2024-13769 was published Feb 12, 2025
The WooCommerce Customers Manager plugin for WordPress is vulnerable to Privilege Escalation due... High Unreviewed
CVE-2024-13343 was published Feb 1, 2025
Missing Authorization vulnerability in Hardik Sticky Header On Scroll allows Exploiting... Moderate Unreviewed
CVE-2025-27356 was published Feb 24, 2025
Missing Authorization vulnerability in revenueflex Auto Ad Inserter – Increase Google Adsense and... High Unreviewed
CVE-2025-27296 was published Feb 24, 2025
Missing Authorization vulnerability in bPlugins Animated Text Block allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-26883 was published Feb 24, 2025
Missing Authorization vulnerability in platcom WP-Asambleas allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-27294 was published Feb 24, 2025
Missing Authorization vulnerability in enituretechnology Distance Based Shipping Calculator... Moderate Unreviewed
CVE-2025-26764 was published Feb 22, 2025
Missing Authorization vulnerability in appsbd Vitepos allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-26750 was published Feb 22, 2025
Leantime has Missing Authorization Check for Host Parameter Low
GHSA-3hfj-qcvj-4hx8 was published for leantime/leantime (Composer) Feb 21, 2025
harshilsecurify
The Affiliate Links: WordPress Plugin for Link Cloaking and Link Management plugin for WordPress... High Unreviewed
CVE-2024-13556 was published Feb 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database