GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,590
Composer 4,706
Erlang 34
GitHub Actions 28
Go 2,292
Maven 5,573
npm 3,942
NuGet 708
pip 3,711
Pub 12
RubyGems 919
Rust 959
Swift 38

Unreviewed advisories

All unreviewed 256,535

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

120,718 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been classified as... Moderate Unreviewed

CVE-2025-5006 was published May 21, 2025

A vulnerability was found in projectworlds Online Time Table Generator 1.0. It has been rated as... Moderate Unreviewed

CVE-2025-5008 was published May 21, 2025

A vulnerability has been found in projectworlds Online Time Table Generator 1.0 and classified as... Moderate Unreviewed

CVE-2025-5003 was published May 21, 2025

A vulnerability was found in projectworlds Online Time Table Generator 1.0 and classified as... Moderate Unreviewed

CVE-2025-5004 was published May 21, 2025

A vulnerability classified as problematic was found in moonlightL hexo-boot 4.3.0. This... Moderate Unreviewed

CVE-2025-5011 was published May 21, 2025

A vulnerability was found in Part-DB up to 1.17.0. It has been declared as problematic. Affected... Moderate Unreviewed

CVE-2025-5007 was published May 21, 2025

A vulnerability classified as problematic has been found in moonlightL hexo-boot 4.3.0. This... Moderate Unreviewed

CVE-2025-5010 was published May 21, 2025

A vulnerability, which was classified as critical, was found in SourceCodester Client Database... Moderate Unreviewed

CVE-2025-5002 was published May 21, 2025

A vulnerability was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. It has been... Moderate Unreviewed

CVE-2025-5001 was published May 21, 2025

A vulnerability was found in Linksys FGW3000-AH and FGW3000-HK up to 1.0.17.000000 and classified... Moderate Unreviewed

CVE-2025-4999 was published May 20, 2025

A vulnerability was found in Linksys FGW3000-AH and FGW3000-HK up to 1.0.17.000000. It has been... Moderate Unreviewed

CVE-2025-5000 was published May 20, 2025

A vulnerability, which was classified as problematic, has been found in Intelbras RF 301K 1.1.5.... Moderate Unreviewed

CVE-2025-4996 was published May 20, 2025

The Post Sync WordPress plugin through 1.1 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-13634 was published May 20, 2025

The R3W InstaFeed WordPress plugin through 1.0 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-13678 was published May 20, 2025

The CalendApp WordPress plugin through 1.1 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-13669 was published May 20, 2025

The pushBIZ WordPress plugin through 1.0 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-13629 was published May 20, 2025

The NewsTicker WordPress plugin through 1.0 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-13630 was published May 20, 2025

The WooCommerce Cart Count Shortcode WordPress plugin before 1.1.0 does not validate and escape... Moderate Unreviewed

CVE-2024-10563 was published May 20, 2025

The WP BASE Booking of Appointments, Services and Events WordPress plugin before 5.0.0 does not... Moderate Unreviewed

CVE-2024-12737 was published May 20, 2025

In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue... Moderate Unreviewed

CVE-2025-47850 was published May 20, 2025

In JetBrains TeamCity before 2025.03.2 stored XSS via YouTrack integration was possible Moderate Unreviewed

CVE-2025-47852 was published May 20, 2025

In JetBrains TeamCity before 2025.03.2 stored XSS via Jira integration was possible Moderate Unreviewed

CVE-2025-47853 was published May 20, 2025

In JetBrains TeamCity before 2025.03.2 stored XSS via GitHub Checks Webhook was possible Moderate Unreviewed

CVE-2025-47851 was published May 20, 2025

In JetBrains TeamCity before 2025.03.2 open redirect was possible on editing VCS Root page Moderate Unreviewed

CVE-2025-47854 was published May 20, 2025

OpenFlow discovery protocol can exhaust resources because it is not rate limited Moderate Unreviewed

CVE-2025-48016 was published May 20, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

120,718 advisories