Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

121,922 advisories

Loading
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction &... Moderate Unreviewed
CVE-2025-0318 was published Jan 18, 2025
The Podlove Podcast Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-0554 was published Jan 18, 2025
The Image Source Control Lite – Show Image Credits and Captions plugin for WordPress is... Moderate Unreviewed
CVE-2024-13515 was published Jan 18, 2025
The Kubio AI Page Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed
CVE-2024-13516 was published Jan 18, 2025
The Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media plugin... Moderate Unreviewed
CVE-2024-12071 was published Jan 18, 2025
A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. This... Moderate Unreviewed
CVE-2025-0541 was published Jan 18, 2025
Under certain log settings the IAM or CORE service will log credentials in the iam logfile in... Moderate Unreviewed
CVE-2024-11923 was published Jan 18, 2025
A vulnerability, which was classified as problematic, was found in code-projects Tourism... Moderate Unreviewed
CVE-2025-0538 was published Jan 17, 2025
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as... Moderate Unreviewed
CVE-2025-0540 was published Jan 17, 2025
Cross Site Scripting vulnerability in InformationPush master version allows a remote attacker to... Moderate Unreviewed
CVE-2024-57372 was published Jan 17, 2025
OtCMS <=V7.46 is vulnerable to Server-Side Request Forgery (SSRF) in /admin/read.php, which can... Moderate Unreviewed
CVE-2024-57252 was published Jan 17, 2025
A vulnerability classified as critical was found in 1000 Projects Attendance Tracking Management... Moderate Unreviewed
CVE-2025-0536 was published Jan 17, 2025
A vulnerability exists in Algo Edge up to 2.1.1 - a previously used (legacy) component of navify®... Moderate Unreviewed
CVE-2024-13026 was published Jan 17, 2025
A vulnerability, which was classified as problematic, has been found in code-projects Car Rental... Moderate Unreviewed
CVE-2025-0537 was published Jan 17, 2025
A vulnerability was found in 1000 Projects Campaign Management System Platform for Women 1.0. It... Moderate Unreviewed
CVE-2025-0534 was published Jan 17, 2025
A vulnerability classified as critical has been found in Codezips Gym Management System 1.0. This... Moderate Unreviewed
CVE-2025-0535 was published Jan 17, 2025
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21185 was published Jan 17, 2025
KaTeX \htmlData does not validate attribute names Moderate
CVE-2025-23207 was published for katex (npm) Jan 17, 2025
nsysean edemaine
A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as... Moderate Unreviewed
CVE-2025-0532 was published Jan 17, 2025
A vulnerability was found in 1000 Projects Campaign Management System Platform for Women 1.0. It... Moderate Unreviewed
CVE-2025-0533 was published Jan 17, 2025
A vulnerability was found in code-projects Chat System 1.0 and classified as critical. This issue... Moderate Unreviewed
CVE-2025-0531 was published Jan 17, 2025
All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 are vulnerable to... Moderate Unreviewed
CVE-2024-26157 was published Jan 17, 2025
All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 expose clear text... Moderate Unreviewed
CVE-2024-26155 was published Jan 17, 2025
All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 are vulnerable to... Moderate Unreviewed
CVE-2024-26156 was published Jan 17, 2025
All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 are vulnerable to... Moderate Unreviewed
CVE-2024-26154 was published Jan 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database