GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,691

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

112,761 advisories

Filter by severity

Sort by

Least recently updated

The Import any XML or CSV File to WordPress PRO plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2024-8722 was published Jan 19, 2025

A vulnerability was found in ZZCMS 2023. It has been rated as critical. Affected by this issue is... Moderate Unreviewed

CVE-2025-0565 was published Jan 19, 2025

A vulnerability was found in code-projects Fantasy-Cricket 1.0. It has been declared as critical.... Moderate Unreviewed

CVE-2025-0564 was published Jan 19, 2025

IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 could disclose sensitive IP... Moderate Unreviewed

CVE-2024-45653 was published Jan 19, 2025

A vulnerability was found in code-projects Fantasy-Cricket 1.0. It has been classified as... Moderate Unreviewed

CVE-2025-0563 was published Jan 19, 2025

A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. This... Moderate Unreviewed

CVE-2025-0562 was published Jan 19, 2025

IBM Maximo MXAPIASSET API 7.6.1.3 could allow a remote attacker to traverse directories on the... Moderate Unreviewed

CVE-2024-45652 was published Jan 19, 2025

IBM Security ReaQta 3.12 could allow an authenticated user to perform unauthorized actions due to... Moderate Unreviewed

CVE-2024-45654 was published Jan 19, 2025

The SiteOrigin Widgets Bundle plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-1070 was published Feb 29, 2024

The SiteOrigin Widgets Bundle plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-1058 was published Feb 29, 2024

A vulnerability has been found in itsourcecode Farm Management System 1.0 and classified as... Moderate Unreviewed

CVE-2025-0561 was published Jan 19, 2025

IBM Jazz for Service Management 1.1.3 through 1.1.3.22 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2024-47106 was published Jan 18, 2025

IBM Robotic Process Automation 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18 and IBM... Moderate Unreviewed

CVE-2024-49824 was published Jan 18, 2025

IBM Concert 1.0.0, 1.0.1, and 1.0.2 is vulnerable to sensitive information disclosure through... Moderate Unreviewed

CVE-2024-49354 was published Jan 18, 2025

IBM Robotic Process Automation 21.0.0 through 21.0.7.17 and 23.0.0 through 23.0.18 could allow a... Moderate Unreviewed

CVE-2024-51448 was published Jan 18, 2025

A vulnerability, which was classified as problematic, was found in CampCodes School Management... Moderate Unreviewed

CVE-2025-0560 was published Jan 18, 2025

IBM App Connect Enterprise 12.0.1.0 through 12.0.7.0and 13.0.1.0 under certain configurations... Moderate Unreviewed

CVE-2024-49338 was published Jan 18, 2025

A vulnerability, which was classified as problematic, has been found in Campcodes School... Moderate Unreviewed

CVE-2025-0559 was published Jan 18, 2025

A vulnerability classified as critical was found in TDuckCloud tduck-platform up to 4.0. This... Moderate Unreviewed

CVE-2025-0558 was published Jan 18, 2025

A vulnerability, which was classified as problematic, has been found in code-projects Car Rental... Moderate Unreviewed

CVE-2025-0537 was published Jan 17, 2025

A vulnerability, which was classified as problematic, was found in code-projects Tourism... Moderate Unreviewed

CVE-2025-0538 was published Jan 17, 2025

The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress... Moderate Unreviewed

CVE-2024-13517 was published Jan 18, 2025

The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet... Moderate Unreviewed

CVE-2024-13391 was published Jan 18, 2025

The JSM Screenshot Machine Shortcode plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-13385 was published Jan 18, 2025

The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13393 was published Jan 18, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

112,761 advisories