Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,360
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,793
NuGet
683
pip
3,471
Pub
12
RubyGems
894
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,736 advisories

Loading
Missing Authorization vulnerability in SzMake Contact Form 7 Anti Spambot allows Exploiting... Moderate Unreviewed
CVE-2025-23862 was published Jan 16, 2025
Missing Authorization vulnerability in Ujjaval Jani Copy Move Posts allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-23764 was published Jan 16, 2025
Missing Authorization vulnerability in August Infotech AI Responsive Gallery Album allows... Moderate Unreviewed
CVE-2025-23785 was published Jan 16, 2025
Missing Authorization vulnerability in Pravin Durugkar User Sync ActiveCampaign allows Exploiting... Moderate Unreviewed
CVE-2025-23778 was published Jan 16, 2025
Missing Authorization vulnerability in Alex Volkov Woo Tuner allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-23761 was published Jan 16, 2025
Missing Authorization vulnerability in Thorn Technologies LLC Cache Sniper for Nginx allows... Moderate Unreviewed
CVE-2025-23776 was published Jan 16, 2025
Missing Authorization vulnerability in Sanjaysolutions Loginplus allows Accessing Functionality... Moderate Unreviewed
CVE-2025-23514 was published Jan 16, 2025
Missing Authorization vulnerability in Smackcoders SendGrid for WordPress allows Exploiting... Moderate Unreviewed
CVE-2025-23423 was published Jan 16, 2025
An information disclosure vulnerability in the component d_status.asp of D-Link 816A2_FWv1... Moderate Unreviewed
CVE-2024-57682 was published Jan 16, 2025
Indico Insecure Access Moderate
CVE-2024-50633 was published for indico (pip) Jan 16, 2025
The Multi Step Form plugin for WordPress is vulnerable to unauthorized limited file upload due to... Moderate Unreviewed
CVE-2024-12427 was published Jan 16, 2025
A logic issue was addressed with improved checks. This issue is fixed in iOS 18.1 and iPadOS 18.1... Moderate Unreviewed
CVE-2024-54470 was published Jan 15, 2025
Missing Authorization vulnerability in Ugur CELIK WP News Sliders allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-22779 was published Jan 15, 2025
Missing Authorization vulnerability in bPlugins LLC Button Block allows Accessing Functionality... Moderate Unreviewed
CVE-2025-22787 was published Jan 15, 2025
Missing Authorization vulnerability in Infomaniak Staff VOD Infomaniak allows Exploiting... Moderate Unreviewed
CVE-2025-22729 was published Jan 15, 2025
Missing Authorization vulnerability in MagePeople Team WpTravelly allows Accessing Functionality... Moderate Unreviewed
CVE-2025-22737 was published Jan 15, 2025
Missing Authorization vulnerability in Poll Maker Team Poll Maker allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2024-56295 was published Jan 15, 2025
The NitroPack plugin for WordPress is vulnerable to unauthorized arbitrary transient update due... Moderate Unreviewed
CVE-2024-11851 was published Jan 15, 2025
The W3 Total Cache plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed
CVE-2024-12006 was published Jan 14, 2025
Due to a missing authorization check on service endpoints in the SAP NetWeaver Application Server... Moderate Unreviewed
CVE-2025-0067 was published Jan 14, 2025
An obsolete functionality in SAP NetWeaver Application Server ABAP did not perform necessary... Moderate Unreviewed
CVE-2025-0068 was published Jan 14, 2025
Missing Authorization vulnerability in Post SMTP Post SMTP allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-22800 was published Jan 13, 2025
The Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups plugin... Moderate Unreviewed
CVE-2024-12204 was published Jan 11, 2025
The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3,... Moderate Unreviewed
CVE-2024-12606 was published Jan 10, 2025
Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue... Moderate Unreviewed
CVE-2024-13312 was published Jan 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database