GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,773
Composer 4,753
Erlang 35
GitHub Actions 29
Go 2,326
Maven 5,610
npm 3,956
NuGet 712
pip 3,741
Pub 12
RubyGems 921
Rust 973
Swift 38

Unreviewed advisories

All unreviewed 258,434

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

131,714 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-22815 was published Jan 9, 2025

IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1... Moderate Unreviewed

CVE-2022-22491 was published Jan 9, 2025

IBM OpenPages 9.0 could allow an authenticated user to obtain sensitive information such as... Moderate Unreviewed

CVE-2024-43176 was published Jan 9, 2025

The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-6155 was published Jan 9, 2025

The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3,... Moderate Unreviewed

CVE-2024-12605 was published Jan 9, 2025

The Action Network plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-12394 was published Jan 9, 2025

The Files Download Delay plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-12493 was published Jan 9, 2025

The Yumpu E-Paper publishing plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-12621 was published Jan 9, 2025

The Searchie plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ... Moderate Unreviewed

CVE-2024-12819 was published Jan 9, 2025

The Muslim Prayer Time-Salah/Iqamah plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-12515 was published Jan 9, 2025

The Bitly's WordPress Plugin plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2024-12616 was published Jan 9, 2025

The 3DVieweronline plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-12514 was published Jan 9, 2025

The Newsletter2Go plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed

CVE-2024-12618 was published Jan 9, 2025

The Linear plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ... Moderate Unreviewed

CVE-2024-12496 was published Jan 9, 2025

The SimplyRETS Real Estate IDX plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-12491 was published Jan 9, 2025

The MIMO Woocommerce Order Tracking plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-5769 was published Jan 9, 2025

The Pósturinn\'s Shipping with WooCommerce plugin for WordPress is vulnerable to Reflected... Moderate Unreviewed

CVE-2024-11815 was published Jan 9, 2025

The Skyword API Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-11907 was published Jan 9, 2025

The WhatsApp 🚀 click to chat plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed

CVE-2024-11686 was published Jan 9, 2025

The WP Travel – Ultimate Travel Booking System, Tour Management Engine plugin for WordPress is... Moderate Unreviewed

CVE-2024-12067 was published Jan 9, 2025

The GS Insever Portfolio plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed

CVE-2024-12249 was published Jan 9, 2025

The SEMA API plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘catid’... Moderate Unreviewed

CVE-2024-12285 was published Jan 9, 2025

The ResAds plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via multiple... Moderate Unreviewed

CVE-2024-12122 was published Jan 9, 2025

The Responsive FlipBook Plugin Wordpress plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-11929 was published Jan 9, 2025

The WordPress Header Builder Plugin – Pearl plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed

CVE-2024-12206 was published Jan 9, 2025

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

131,714 advisories