GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,087
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,086
Maven 5,251
npm 3,747
NuGet 674
pip 3,436
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,553

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,247 advisories

Filter by severity

Sort by

Least recently updated

Missing Authorization vulnerability in Sur.ly Sur.ly allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2025-23957 was published Jan 16, 2025

Missing Authorization vulnerability in xola.com Xola allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2025-23955 was published Jan 16, 2025

Missing Authorization vulnerability in Nuanced Media WP Meetup allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-23916 was published Jan 16, 2025

Missing Authorization vulnerability in Chandrika Guntur, Morgan Kay Chamber Dashboard Business... Moderate Unreviewed

CVE-2025-23917 was published Jan 16, 2025

Missing Authorization vulnerability in wishfulthemes Email Capture & Lead Generation allows... Moderate Unreviewed

CVE-2025-23929 was published Jan 16, 2025

Missing Authorization vulnerability in Sven Hofmann & Michael Schoenrock Mark Posts allows... Moderate Unreviewed

CVE-2025-23963 was published Jan 16, 2025

Missing Authorization vulnerability in AWcode & KingfisherFox Salvador – AI Image Generator... Moderate Unreviewed

CVE-2025-23954 was published Jan 16, 2025

Missing Authorization vulnerability in Goldstar Goldstar allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2025-23962 was published Jan 16, 2025

Missing Authorization vulnerability in SzMake Contact Form 7 Anti Spambot allows Exploiting... Moderate Unreviewed

CVE-2025-23862 was published Jan 16, 2025

Missing Authorization vulnerability in WP Tasker WordPress Graphs & Charts allows Exploiting... Moderate Unreviewed

CVE-2025-23961 was published Jan 16, 2025

Missing Authorization vulnerability in iTechArt-Group PayPal Marketing Solutions allows... Moderate Unreviewed

CVE-2025-23930 was published Jan 16, 2025

Missing Authorization vulnerability in Alex Volkov Woo Tuner allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-23761 was published Jan 16, 2025

Missing Authorization vulnerability in Pravin Durugkar User Sync ActiveCampaign allows Exploiting... Moderate Unreviewed

CVE-2025-23778 was published Jan 16, 2025

Missing Authorization vulnerability in August Infotech AI Responsive Gallery Album allows... Moderate Unreviewed

CVE-2025-23785 was published Jan 16, 2025

Missing Authorization vulnerability in Thorn Technologies LLC Cache Sniper for Nginx allows... Moderate Unreviewed

CVE-2025-23776 was published Jan 16, 2025

Missing Authorization vulnerability in Ujjaval Jani Copy Move Posts allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-23764 was published Jan 16, 2025

Missing Authorization vulnerability in Smackcoders SendGrid for WordPress allows Exploiting... Moderate Unreviewed

CVE-2025-23423 was published Jan 16, 2025

Missing Authorization vulnerability in Sanjaysolutions Loginplus allows Accessing Functionality... Moderate Unreviewed

CVE-2025-23514 was published Jan 16, 2025

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.1 and iPadOS 18.1... Moderate Unreviewed

CVE-2024-54470 was published Jan 15, 2025

The Admin side data storage for Contact Form 7 plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-1778 was published Feb 23, 2024

The ElementsKit Elementor addons plugin for WordPress is vulnerable to Information Exposure in... Moderate Unreviewed

CVE-2024-6455 was published Jul 18, 2024

The Brizy – Page Builder plugin for WordPress is vulnerable to unauthorized plugin setting update... Moderate Unreviewed

CVE-2024-3711 was published May 23, 2024

The Admin side data storage for Contact Form 7 plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-1779 was published Feb 23, 2024

The Yuki theme for WordPress is vulnerable to unauthorized modification of data due to a missing... Moderate Unreviewed

CVE-2024-1388 was published Feb 28, 2024

The Multi Step Form plugin for WordPress is vulnerable to unauthorized limited file upload due to... Moderate Unreviewed

CVE-2024-12427 was published Jan 16, 2025

Previous 1 2 3 4 5 … 89 90 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,247 advisories