Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,778
Erlang
36
GitHub Actions
29
Go
2,336
Maven
5,000+
npm
3,970
NuGet
713
pip
3,767
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+

13 advisories

Loading
The Motors theme for WordPress is vulnerable to privilege escalation via account takeover in all... Critical Unreviewed
CVE-2025-4322 was published May 20, 2025
The GPM from WormHole Tech has an Unverified Password Change vulnerability, allowing... Critical Unreviewed
CVE-2025-4558 was published May 12, 2025
The IMITHEMES Listing plugin is vulnerable to privilege escalation via account takeover in all... Critical Unreviewed
CVE-2025-2253 was published May 9, 2025
The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover... Critical Unreviewed
CVE-2025-3603 was published Apr 24, 2025
A unverified password change vulnerability in Fortinet FortiSwitch GUI may allow a remote... Critical Unreviewed
CVE-2024-48887 was published Apr 8, 2025
The Nokri – Job Board WordPress Theme theme for WordPress is vulnerable to privilege escalation... Critical Unreviewed
CVE-2024-12824 was published Mar 1, 2025
The CarSpot – Dealership Wordpress Classified Theme theme for WordPress is vulnerable to... Critical Unreviewed
CVE-2024-12860 was published Feb 18, 2025
Unverified password change vulnerability in Janto, versions prior to r12. This could allow an... Critical Unreviewed
CVE-2025-1107 was published Feb 7, 2025
The Adifier System plugin for WordPress is vulnerable to privilege escalation via account... Critical Unreviewed
CVE-2024-13375 was published Jan 18, 2025
The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0... Critical Unreviewed
CVE-2024-33699 was published Oct 30, 2024
An issue in Hangzhou Xiongwei Technology Development Co., Ltd. Restaurant Digital Comprehensive... Critical Unreviewed
CVE-2024-26520 was published Jul 26, 2024
A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V5... Critical Unreviewed
CVE-2024-37998 was published Jul 22, 2024
A vulnerability in the authentication system of Cisco Smart Software Manager On-Prem (SSM On-Prem... Critical Unreviewed
CVE-2024-20419 was published Jul 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database