GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,807

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

596 advisories

Filter by severity

Sort by

Least recently updated

StrongKey FIDO Server before 4.15.1 treats a non-discoverable (namedcredential) flow as a... High Unreviewed

CVE-2025-26788 was published Feb 14, 2025

Insecure direct object reference (IDOR) vulnerability in Anapi Group's h6web, allows an... Critical Unreviewed

CVE-2025-1270 was published Feb 13, 2025

The DethemeKit For Elementor plugin for WordPress is vulnerable to Information Exposure in all... Moderate Unreviewed

CVE-2025-0661 was published Feb 13, 2025

An authorization bypass vulnerability exists in the Mavenir SCE Application Provisioning Portal,... High Unreviewed

CVE-2024-34520 was published Feb 13, 2025

The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress... Moderate Unreviewed

CVE-2024-13601 was published Feb 12, 2025

The Builder Shortcode Extras – WordPress Shortcodes Collection to Save You Time plugin for... Moderate Unreviewed

CVE-2024-13841 was published Feb 7, 2025

In Newgensoft OmniDocs 11.0_SP1_03_006, Insecure Direct Object Reference (IDOR) in the... High Unreviewed

CVE-2024-39033 was published Feb 6, 2025

ManageEngine Endpoint Central versions before 11.3.2440.09 are vulnerable to IDOR vulnerability... Low Unreviewed

CVE-2024-9097 was published Feb 5, 2025

The UltraAddons – Elementor Addons (Header Footer Builder, Custom Font, Custom CSS,Woo Widget,... Moderate Unreviewed

CVE-2024-10696 was published Feb 5, 2025

The Medical Addon for Elementor plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed

CVE-2024-12046 was published Feb 4, 2025

The JS Help Desk – The Ultimate Help Desk & Support Plugin plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13607 was published Feb 4, 2025

Authorization Bypass Through User-Controlled Key vulnerability in NirWp Team Nirweb support. This... Moderate Unreviewed

CVE-2025-22695 was published Feb 3, 2025

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for... Moderate Unreviewed

CVE-2024-13428 was published Feb 1, 2025

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for... Moderate Unreviewed

CVE-2024-13372 was published Feb 1, 2025

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for... Moderate Unreviewed

CVE-2024-13425 was published Feb 1, 2025

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for... Moderate Unreviewed

CVE-2024-13429 was published Feb 1, 2025

The Typer Core plugin for WordPress is vulnerable to Information Exposure in all versions up to,... Moderate Unreviewed

CVE-2024-12102 was published Jan 30, 2025

The WooCommerce Wishlist (High customization, fast setup,Free Elementor Wishlist, most features)... High Unreviewed

CVE-2024-13694 was published Jan 30, 2025

The Event Tickets and Registration plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed

CVE-2024-13457 was published Jan 30, 2025

CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow... High Unreviewed

CVE-2024-10497 was published Jan 17, 2025

TrueFiling is a collaborative, web-based electronic filing system where attorneys, paralegals,... Low Unreviewed

CVE-2024-11146 was published Jan 17, 2025

The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Information Exposure in... Moderate Unreviewed

CVE-2024-10775 was published Jan 15, 2025

In SAP Business Workflow and SAP Flexible Workflow, an authenticated attacker can manipulate a... Moderate Unreviewed

CVE-2025-0058 was published Jan 14, 2025

The RRAddons for Elementor plugin for WordPress is vulnerable to Information Exposure in all... Moderate Unreviewed

CVE-2024-11915 was published Jan 11, 2025

The Unlimited Theme Addon For Elementor and WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12116 was published Jan 11, 2025

Previous 1 2 3 4 5 … 23 24 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

596 advisories