GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,537
Composer 4,454
Erlang 33
GitHub Actions 22
Go 2,153
Maven 5,330
npm 3,818
NuGet 693
pip 3,492
Pub 12
RubyGems 902
Rust 903
Swift 38

Unreviewed advisories

All unreviewed 246,943

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,486 advisories

Filter by severity

Sort by

Least recently updated

The Shortcode Cleaner Lite plugin for WordPress is vulnerable to unauthorized access of data due... Moderate Unreviewed

CVE-2025-1481 was published Mar 8, 2025

The Post Lockdown plugin for WordPress is vulnerable to Information Exposure in all versions up... Moderate Unreviewed

CVE-2025-1504 was published Mar 8, 2025

The School Management System for Wordpress plugin for WordPress is vulnerable to Reflected Cross... Moderate Unreviewed

CVE-2024-12611 was published Mar 7, 2025

The School Management System for Wordpress plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-12610 was published Mar 7, 2025

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13526 was published Mar 7, 2025

The Cookie banner plugin for WordPress – Cookiebot CMP by Usercentrics plugin for WordPress is... Moderate Unreviewed

CVE-2025-1666 was published Mar 6, 2025

The Sparkling theme for WordPress is vulnerable to unauthorized plugin activation/deactivation... Moderate Unreviewed

CVE-2024-13423 was published Mar 5, 2025

The WP Online Contract plugin for WordPress is vulnerable to unauthorized access due to a missing... Moderate Unreviewed

CVE-2025-0954 was published Mar 5, 2025

The Lafka - Multi Store Burger - Pizza & Food Delivery WooCommerce Theme theme for WordPress is... Moderate Unreviewed

CVE-2024-13811 was published Mar 5, 2025

The Zass - WooCommerce Theme for Handmade Artists and Artisans theme for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-13810 was published Mar 5, 2025

The Hero Mega Menu - Responsive WordPress Menu Plugin plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13780 was published Mar 5, 2025

The WooMail - WooCommerce Email Customizer plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-13747 was published Mar 5, 2025

The JNews - WordPress Newspaper Magazine Blog AMP Theme theme for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-8682 was published Mar 5, 2025

The VW Storefront theme for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed

CVE-2024-13686 was published Mar 4, 2025

Missing Authorization vulnerability in Alex Volkov WAH Forms allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-23763 was published Mar 3, 2025

Missing Authorization vulnerability in NotFound WP Journal allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-23613 was published Mar 3, 2025

Missing Authorization vulnerability in NotFound Interactive Page Hierarchy allows Exploiting... Moderate Unreviewed

CVE-2025-23615 was published Mar 3, 2025

Missing Authorization vulnerability in tsecher ts-tree allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2025-23515 was published Mar 3, 2025

Missing Authorization vulnerability in radicaldesigns radSLIDE allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-23440 was published Mar 3, 2025

The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-1404 was published Mar 1, 2025

The IP2Location Redirection plugin for WordPress is vulnerable to unauthorized access of data due... Moderate Unreviewed

CVE-2025-1502 was published Mar 1, 2025

The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for... Moderate Unreviewed

CVE-2024-13358 was published Mar 1, 2025

The Booking Calendar and Notification plugin for WordPress is vulnerable to unauthorized access,... Moderate Unreviewed

CVE-2024-13746 was published Mar 1, 2025

The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for... Moderate Unreviewed

CVE-2025-1780 was published Mar 1, 2025

The NextMove Lite – Thank You Page for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-10860 was published Feb 28, 2025

Previous 1 2 3 4 5 … 99 100 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,486 advisories