GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,966
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,146
npm 4,337
NuGet 764
pip 4,112
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,859

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

133,734 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Advanced Product Fields (Product Addons) for WooCommerce plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2025-13924 was published Dec 9, 2025

Denial of Service Vulnerability in NETGEAR C6220 and C6230 (DOCSIS® 3.0 Two-in-one Cable Modem +... Moderate Unreviewed

CVE-2025-12941 was published Dec 9, 2025

A vulnerability in the speedtest feature of affected NETGEAR Nighthawk routers, caused by... Moderate Unreviewed

CVE-2025-12946 was published Dec 9, 2025

MailEnable versions prior to 10.54 contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed

CVE-2025-34397 was published Dec 9, 2025

MailEnable versions prior to 10.54 contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed

CVE-2025-34398 was published Dec 9, 2025

MailEnable versions prior to 10.54 contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed

CVE-2025-34399 was published Dec 9, 2025

MailEnable versions prior to 10.54 contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed

CVE-2025-34400 was published Dec 9, 2025

Missing Authorization vulnerability in wpdevart Booking calendar, Appointment Booking System... Moderate Unreviewed

CVE-2025-67574 was published Dec 9, 2025

Missing Authorization vulnerability in hassantafreshi Easy Form Builder easy-form-builder allows... Moderate Unreviewed

CVE-2025-67577 was published Dec 9, 2025

Missing Authorization vulnerability in Andrew Lima Sitewide Notice WP sitewide-notice-wp allows... Moderate Unreviewed

CVE-2025-67575 was published Dec 9, 2025

Missing Authorization vulnerability in vanquish User Extra Fields wp-user-extra-fields allows... Moderate Unreviewed

CVE-2025-67579 was published Dec 9, 2025

Missing Authorization vulnerability in Rhys Wynne WP Email Capture wp-email-capture allows... Moderate Unreviewed

CVE-2025-67578 was published Dec 9, 2025

Missing Authorization vulnerability in QuantumCloud Simple Link Directory simple-link-directory... Moderate Unreviewed

CVE-2025-67576 was published Dec 9, 2025

Missing Authorization vulnerability in Constant Contact Constant Contact + WooCommerce constant... Moderate Unreviewed

CVE-2025-67580 was published Dec 9, 2025

Missing Authorization vulnerability in WebCodingPlace Image Caption Hover Pro image-caption-hover... Moderate Unreviewed

CVE-2025-67562 was published Dec 9, 2025

Missing Authorization vulnerability in ThemeAtelier IDonate idonate allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-67583 was published Dec 9, 2025

Missing Authorization vulnerability in themetechmount TrueBooker truebooker-appointment-booking... Moderate Unreviewed

CVE-2025-67581 was published Dec 9, 2025

Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share... Moderate Unreviewed

CVE-2025-67586 was published Dec 9, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-67567 was published Dec 9, 2025

Missing Authorization vulnerability in Saad Iqbal Post SMTP post-smtp allows Exploiting... Moderate Unreviewed

CVE-2025-67563 was published Dec 9, 2025

Missing Authorization vulnerability in rtCamp GoDAM godam allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-67584 was published Dec 9, 2025

Missing Authorization vulnerability in wbcomdesigns Wbcom Designs lock-my-bp allows Exploiting... Moderate Unreviewed

CVE-2025-67582 was published Dec 9, 2025

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in flexmls Flexmls® IDX flexmls... Moderate Unreviewed

CVE-2025-67585 was published Dec 9, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in alekv... Moderate Unreviewed

CVE-2025-67564 was published Dec 9, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in sizam... Moderate Unreviewed

CVE-2025-67565 was published Dec 9, 2025

Previous 1…3…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

133,734 advisories