Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,474
Erlang
33
GitHub Actions
24
Go
2,203
Maven
5,000+
npm
3,845
NuGet
696
pip
3,635
Pub
12
RubyGems
911
Rust
912
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,534 advisories

Loading
The Ultimate Dashboard – Custom WordPress Dashboard plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-2276 was published Mar 26, 2025
In wlan driver, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2022-47327 was published Feb 12, 2023
The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for... Moderate Unreviewed
CVE-2025-2224 was published Mar 25, 2025
Missing Authorization vulnerability in WPExperts Wholesale For WooCommerce.This issue affects... Moderate Unreviewed
CVE-2024-30469 was published Mar 29, 2024
Missing Authorization vulnerability in westerndeal Advanced Dewplayer allows Exploiting... Moderate Unreviewed
CVE-2025-30592 was published Mar 24, 2025
Missing Authorization vulnerability in tuyennv Music Press Pro allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-30591 was published Mar 24, 2025
Missing Authorization vulnerability in ldwin79 sourceplay-navermap allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-30605 was published Mar 24, 2025
Missing Authorization vulnerability in swayam.tejwani Menu Duplicator allows Exploiting... Moderate Unreviewed
CVE-2025-30543 was published Mar 24, 2025
Missing Authorization vulnerability in PluginOps Top Bar allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-30581 was published Mar 24, 2025
The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-1408 was published Mar 22, 2025
The Motors – Car Dealer, Classifieds & Listing plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-13737 was published Mar 22, 2025
The Download Manager plugin for WordPress is vulnerable to unauthorized file download of files... Moderate Unreviewed
CVE-2023-6785 was published Mar 13, 2024
The EleForms – All In One Form Integration including DB for Elementor plugin for WordPress is... Moderate Unreviewed
CVE-2024-2043 was published May 2, 2024
DESCOR INFOCAD 3.5.1 and before and fixed in v.3.5.2.0 has a broken authorization schema. Moderate Unreviewed
CVE-2025-26853 was published Mar 20, 2025
The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-1763 was published Mar 13, 2024
The Event Manager, Events Calendar, Tickets, Registrations – Eventin plugin for WordPress is... Moderate Unreviewed
CVE-2025-1766 was published Mar 20, 2025
The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is... Moderate Unreviewed
CVE-2025-2290 was published Mar 19, 2025
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24108 was published Jan 28, 2025
In multiple locations, there is a possible way to access media content belonging to another user... Moderate Unreviewed
CVE-2023-40108 was published Jan 22, 2025
Missing Authorization vulnerability in realmag777 BEAR.This issue affects BEAR: from n/a through... Moderate Unreviewed
CVE-2024-24835 was published Mar 23, 2024
In the Linux kernel, the following vulnerability has been resolved: parisc: BTLB: Fix crash when... Moderate Unreviewed
CVE-2024-26705 was published Apr 3, 2024
In multiple locations, there is a possible way to bypass KASLR due to an unusual root cause. This... Moderate Unreviewed
CVE-2018-9384 was published Jan 18, 2025
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-2025 was published Mar 15, 2025
The WP01 plugin for WordPress is vulnerable to Arbitrary File Download in all versions up to, and... Moderate Unreviewed
CVE-2025-2267 was published Mar 15, 2025
The School Management System – WPSchoolPress plugin for WordPress is vulnerable to arbitrary user... Moderate Unreviewed
CVE-2025-1668 was published Mar 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database