GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,372
Composer 4,669
Erlang 34
GitHub Actions 26
Go 2,261
Maven 5,512
npm 3,910
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,296

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

253,296 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16 Shadow, GL-AR300M Shadow,... Moderate Unreviewed

CVE-2025-2811 was published Apr 26, 2025

The The Anps Theme plugin plugin for WordPress is vulnerable to arbitrary shortcode execution in... Moderate Unreviewed

CVE-2024-13812 was published Apr 26, 2025

A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16 Shadow, GL-AR300M Shadow,... Moderate Unreviewed

CVE-2025-2850 was published Apr 26, 2025

The Edumall theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and... High Unreviewed

CVE-2025-2101 was published Apr 26, 2025

A vulnerability classified as critical has been found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16... High Unreviewed

CVE-2025-2851 was published Apr 26, 2025

The Jupiter X Core plugin for WordPress is vulnerable to PHP Object Injection in all versions up... High Unreviewed

CVE-2025-2105 was published Apr 26, 2025

The Order Delivery Date WordPress plugin before 12.3.1 does not have authorization and CSRF... Unknown Unreviewed

CVE-2025-2907 was published Apr 26, 2025

The Aeropage Sync for Airtable plugin for WordPress is vulnerable to arbitrary file uploads due... High Unreviewed

CVE-2025-3914 was published Apr 26, 2025

The Add custom page template plugin for WordPress is vulnerable to PHP Code Injection leading to... High Unreviewed

CVE-2025-3491 was published Apr 26, 2025

The Aeropage Sync for Airtable plugin for WordPress is vulnerable to unauthorized loss of data... Moderate Unreviewed

CVE-2025-3915 was published Apr 26, 2025

The Integração entre Eduzz e Woocommerce plugin for WordPress is vulnerable to unauthorized... High Unreviewed

CVE-2025-3906 was published Apr 26, 2025

The Xpro Elementor Addons - Pro plugin for WordPress is vulnerable to Remote Code Execution in... High Unreviewed

CVE-2024-13808 was published Apr 26, 2025

The The Create custom forms for WordPress with a smart form plugin for smart businesses plugin... High Unreviewed

CVE-2025-2801 was published Apr 26, 2025

The Element Pack Addons for Elementor – Free Templates and Widgets for Your WordPress Websites... Moderate Unreviewed

CVE-2025-1458 was published Apr 26, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 allows local users to leverage Insecure Permissions for... Unknown Unreviewed

CVE-2025-32981 was published Apr 25, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 has a Broken Authorization Schema for the report module. Unknown Unreviewed

CVE-2025-32982 was published Apr 25, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 has a Weak Sudo Configuration. Unknown Unreviewed

CVE-2025-32980 was published Apr 25, 2025

ScreenConnect versions 25.2.3 and earlier versions may be susceptible to a ViewState code... High Unreviewed

CVE-2025-3935 was published Apr 25, 2025

An issue in Mytel Telecom Online Account System v1.0 allows attackers to bypass the OTP... High Unreviewed

CVE-2025-28128 was published Apr 25, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 allows Arbitrary File Creation by authenticated users. Unknown Unreviewed

CVE-2025-32979 was published Apr 25, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 has a Sensitive File Accessible Without Proper... Unknown Unreviewed

CVE-2025-32986 was published Apr 25, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 has Hardcoded Credentials that can be obtained from JAR... Unknown Unreviewed

CVE-2025-32985 was published Apr 25, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 allows Technical Information Disclosure via a Stack Trace. High Unreviewed

CVE-2025-32983 was published Apr 25, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 allows Stored Cross-Site Scripting (XSS) via a certain... Moderate Unreviewed

CVE-2025-32984 was published Apr 25, 2025

HCL SX v21 is affected by usage of a weak cryptographic algorithm. An attacker could exploit... Moderate Unreviewed

CVE-2024-30152 was published Apr 25, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

253,296 advisories