GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,693
Composer 4,732
Erlang 35
GitHub Actions 29
Go 2,310
Maven 5,598
npm 3,949
NuGet 711
pip 3,728
Pub 12
RubyGems 920
Rust 964
Swift 38

Unreviewed advisories

All unreviewed 257,387

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,890 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Poll Maker – Best WordPress Poll Plugin plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-3601 was published May 2, 2024

A Missing Authorization vulnerability has been found in DinoRANK. This vulnerability allows an... Moderate Unreviewed

CVE-2025-40673 was published May 28, 2025

The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2025-4683 was published May 27, 2025

Missing Authorization vulnerability in Leadinfo Leadinfo allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2025-48271 was published May 23, 2025

Missing Authorization vulnerability in dastan800 Visual Header allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-48275 was published May 23, 2025

Missing Authorization vulnerability in 6Storage 6Storage Rentals allows Path Traversal. This... Moderate Unreviewed

CVE-2025-47619 was published May 23, 2025

Missing Authorization vulnerability in UX Design Experts Experto CTA Widget – Call To... Moderate Unreviewed

CVE-2025-47529 was published May 23, 2025

When pglogical attempts to replicate data, it does not verify it is using a replication... Moderate Unreviewed

CVE-2025-2506 was published May 22, 2025

A information disclosure vulnerability exists in Rocket.chat <v5, <v4.8.2 and <v4.7.5 where the... Moderate Unreviewed

CVE-2022-35247 was published Sep 25, 2022

The Splitit plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed

CVE-2025-4105 was published May 21, 2025

Inappropriate implementation in Chrome OS lockscreen in Google Chrome on Chrome OS prior to 105.0... Moderate Unreviewed

CVE-2022-3048 was published Sep 27, 2022

The Simple Photoswipe WordPress plugin through 0.1 does not have authorisation check when... Moderate Unreviewed

CVE-2024-5570 was published Jul 9, 2024

Missing Authorization vulnerability in ChoPlugins Custom PC Builder Lite for WooCommerce allows... Moderate Unreviewed

CVE-2025-43838 was published May 19, 2025

Missing Authorization vulnerability in Themovation Hotel + Bed and Breakfast Booking Calendar... Moderate Unreviewed

CVE-2025-39398 was published May 19, 2025

Missing Authorization vulnerability in Averta Master Slider.This issue affects Master Slider:... Moderate Unreviewed

CVE-2025-39412 was published May 19, 2025

Missing Authorization vulnerability in Jeroen Peters Name Directory.This issue affects Name... Moderate Unreviewed

CVE-2025-39454 was published May 19, 2025

Missing Authorization vulnerability in ThimPress Eduma allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2025-39460 was published May 19, 2025

Missing Authorization vulnerability in Eniture Technology LTL Freight Quotes – FreightQuote... Moderate Unreviewed

CVE-2025-22287 was published May 19, 2025

Missing Authorization vulnerability in Themes4WP Bulk allows Accessing Functionality Not Properly... Moderate Unreviewed

CVE-2025-26867 was published May 19, 2025

Missing Authorization vulnerability in PressMaximum Customify allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-26920 was published May 19, 2025

Missing Authorization vulnerability in ThemeGoods Grand Restaurant WordPress allows Exploiting... Moderate Unreviewed

CVE-2025-39353 was published May 19, 2025

Missing Authorization vulnerability in ed4becky Rootspersona allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-39368 was published May 19, 2025

Missing Authorization vulnerability in jegtheme JNews.This issue affects JNews: from n/a through... Moderate Unreviewed

CVE-2025-39373 was published May 19, 2025

Missing Authorization vulnerability in QuanticaLabs Car Park Booking System for WordPress.This... Moderate Unreviewed

CVE-2025-39376 was published May 19, 2025

Missing Authorization vulnerability in Solid Plugins AnalyticsWP allows Accessing Functionality... Moderate Unreviewed

CVE-2025-39388 was published May 19, 2025

Previous 1 2 3 4 5 … 115 116 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,890 advisories