GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,432
Composer 4,409
Erlang 33
GitHub Actions 22
Go 2,144
Maven 5,315
npm 3,808
NuGet 687
pip 3,481
Pub 12
RubyGems 897
Rust 898
Swift 38

Unreviewed advisories

All unreviewed 245,962

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

799 advisories

Filter by severity

Sort by

Least recently updated

The Cardealer theme for WordPress is vulnerable to privilege escalation in versions up to, and... High Unreviewed

CVE-2025-1682 was published Feb 28, 2025

The Addon Library plugin for WordPress is vulnerable to unauthorized access of data due to a... High Unreviewed

CVE-2024-1710 was published Feb 26, 2024

The WP Datepicker plugin for WordPress is vulnerable to unauthorized modification of data due to... High Unreviewed

CVE-2024-3895 was published May 2, 2024

Missing Authorization vulnerability in revmakx DefendWP Firewall allows Exploiting Incorrectly... High Unreviewed

CVE-2025-22280 was published Feb 27, 2025

The Enjoy Social Feed plugin for WordPress website WordPress plugin through 6.2.2 does not have... High Unreviewed

CVE-2024-0780 was published Mar 18, 2024

An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker... High Unreviewed

CVE-2022-45636 was published Mar 21, 2023

The HUAWEI Messaging app has a vulnerability of unauthorized file access. Successful exploitation... High Unreviewed

CVE-2022-48350 was published Mar 28, 2023

The WooCommerce Customers Manager plugin for WordPress is vulnerable to Privilege Escalation due... High Unreviewed

CVE-2024-13343 was published Feb 1, 2025

Missing Authorization vulnerability in revenueflex Auto Ad Inserter – Increase Google Adsense and... High Unreviewed

CVE-2025-27296 was published Feb 24, 2025

The Affiliate Links: WordPress Plugin for Link Cloaking and Link Management plugin for WordPress... High Unreviewed

CVE-2024-13556 was published Feb 18, 2025

The Trash Duplicate and 301 Redirect plugin for WordPress is vulnerable to unauthorized loss of... High Unreviewed

CVE-2024-13468 was published Feb 19, 2025

Missing Authorization vulnerability in Vito Peleg Atarim allows Exploiting Incorrectly Configured... High Unreviewed

CVE-2025-22657 was published Feb 18, 2025

The GetBookingsWP – Appointments Booking Calendar Plugin For WordPress plugin for WordPress is... High Unreviewed

CVE-2024-13677 was published Feb 18, 2025

Missing Authorization vulnerability in Michael Revellin-Clerc Bulk Menu Edit allows Exploiting... High Unreviewed

CVE-2025-24692 was published Feb 14, 2025

Missing Authorization vulnerability in monetagwp Monetag Official Plugin allows Exploiting... High Unreviewed

CVE-2024-52500 was published Feb 14, 2025

An issue has been discovered in GitLab EE affecting all versions starting from 15.2 before 15.9.6... High Unreviewed

CVE-2023-0805 was published May 4, 2023

A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less... High Unreviewed

CVE-2025-26372 was published Feb 12, 2025

A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or... High Unreviewed

CVE-2025-26377 was published Feb 12, 2025

A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or... High Unreviewed

CVE-2025-26378 was published Feb 12, 2025

A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less... High Unreviewed

CVE-2025-26369 was published Feb 12, 2025

A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or... High Unreviewed

CVE-2025-26375 was published Feb 12, 2025

A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less... High Unreviewed

CVE-2025-26371 was published Feb 12, 2025

A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less... High Unreviewed

CVE-2025-26370 was published Feb 12, 2025

A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less... High Unreviewed

CVE-2025-26368 was published Feb 12, 2025

The Apus Framework plugin for WordPress is vulnerable to unauthorized modification of data that... High Unreviewed

CVE-2024-12296 was published Feb 12, 2025

Previous 1 2 3 4 5 … 31 32 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

799 advisories