GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,775
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,124
npm 4,308
NuGet 760
pip 4,080
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,238

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

106,046 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In the Linux kernel, the following vulnerability has been resolved: hrtimers: Handle CPU state... High Unreviewed

CVE-2024-57951 was published Feb 12, 2025

The Welcart e-Commerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... High Unreviewed

CVE-2025-0511 was published Feb 12, 2025

The Small Package Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection... High Unreviewed

CVE-2024-13532 was published Feb 12, 2025

The LTL Freight Quotes – For Customers of FedEx Freight plugin for WordPress is vulnerable to SQL... High Unreviewed

CVE-2024-13480 was published Feb 12, 2025

The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... High Unreviewed

CVE-2024-12386 was published Feb 12, 2025

The LTL Freight Quotes – Worldwide Express Edition plugin for WordPress is vulnerable to SQL... High Unreviewed

CVE-2024-13473 was published Feb 12, 2025

The LTL Freight Quotes – Unishippers Edition plugin for WordPress is vulnerable to SQL Injection... High Unreviewed

CVE-2024-13477 was published Feb 12, 2025

The LTL Freight Quotes – XPO Edition plugin for WordPress is vulnerable to SQL Injection via the ... High Unreviewed

CVE-2024-13490 was published Feb 12, 2025

The ShipEngine Shipping Quotes plugin for WordPress is vulnerable to SQL Injection via the ... High Unreviewed

CVE-2024-13531 was published Feb 12, 2025

The Customer Email Verification for WooCommerce plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-13528 was published Feb 12, 2025

The Small Package Quotes – UPS Edition plugin for WordPress is vulnerable to SQL Injection via... High Unreviewed

CVE-2024-13475 was published Feb 12, 2025

The Apus Framework plugin for WordPress is vulnerable to unauthorized modification of data that... High Unreviewed

CVE-2024-12296 was published Feb 12, 2025

The Ebook Downloader plugin for WordPress is vulnerable to SQL Injection via the 'download'... High Unreviewed

CVE-2024-13435 was published Feb 12, 2025

The Export All Posts, Products, Orders, Refunds & Users plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-12315 was published Feb 12, 2025

Cacti through 1.2.29 allows SQL injection in the template function in host_templates.php via the... High Unreviewed

CVE-2025-26520 was published Feb 12, 2025

The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress... High Unreviewed

CVE-2024-13600 was published Feb 12, 2025

The Click Mag - Viral WordPress News Magazine/Blog Theme theme for WordPress is vulnerable to... High Unreviewed

CVE-2024-13656 was published Feb 12, 2025

The ConvertPlus plugin for WordPress is vulnerable to unauthorized modification of data that can... High Unreviewed

CVE-2024-13800 was published Feb 12, 2025

The All-Images.ai – IA Image Bank and Custom Image creation plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-13714 was published Feb 12, 2025

The ZoxPress - The All-In-One WordPress News Theme theme for WordPress is vulnerable to... High Unreviewed

CVE-2024-13653 was published Feb 12, 2025

The ZoxPress - The All-In-One WordPress News Theme theme for WordPress is vulnerable to... High Unreviewed

CVE-2024-13654 was published Feb 12, 2025

NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability... High Unreviewed

CVE-2025-23359 was published Feb 12, 2025

NVIDIA Jetson AGX Orin™ and NVIDIA IGX Orin software contain a vulnerability where an attacker... High Unreviewed

CVE-2024-0112 was published Feb 12, 2025

Improper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM,... High Unreviewed

CVE-2023-31345 was published Feb 12, 2025

WinZip 7Z File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-1240 was published Feb 12, 2025

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

106,046 advisories