Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,669
Erlang
34
GitHub Actions
26
Go
2,261
Maven
5,000+
npm
3,910
NuGet
704
pip
3,680
Pub
12
RubyGems
915
Rust
943
Swift
38
Unreviewed advisories
All unreviewed
5,000+

952 advisories

Loading
The Integração entre Eduzz e Woocommerce plugin for WordPress is vulnerable to unauthorized... High Unreviewed
CVE-2025-3906 was published Apr 26, 2025
The BM Content Builder plugin for WordPress is vulnerable to unauthorized modification of data... High Unreviewed
CVE-2025-1279 was published Apr 25, 2025
Due to missing authorization an unauthenticated remote attacker can cause a DoS attack by... High Unreviewed
CVE-2021-47662 was published Apr 24, 2025
The Xelion Webchat plugin for WordPress is vulnerable to unauthorized modification of data that... High Unreviewed
CVE-2025-3058 was published Apr 24, 2025
Missing authorization vulnerability in synocopy in Synology DiskStation Manager (DSM) before 7.1... High Unreviewed
CVE-2025-1021 was published Apr 23, 2025
A security vulnerability has been identified in HPE Cray Data Virtualization Service (DVS).... High Unreviewed
CVE-2025-37088 was published Apr 23, 2025
An improper authorization vulnerability in Dremio Software allows authenticated users to delete... High Unreviewed
CVE-2025-2298 was published Apr 21, 2025
Missing Authorization vulnerability in Starfish Reviews Starfish Review Generation & Marketing... High Unreviewed
CVE-2025-39533 was published Apr 17, 2025
Missing Authorization vulnerability in berthaai BERTHA AI allows Exploiting Incorrectly... High Unreviewed
CVE-2025-39583 was published Apr 17, 2025
Missing Authorization vulnerability in spicethemes Spice Blocks allows Exploiting Incorrectly... High Unreviewed
CVE-2025-39532 was published Apr 17, 2025
Missing Authorization vulnerability in fromdoppler Doppler Forms allows Exploiting Incorrectly... High Unreviewed
CVE-2025-32620 was published Apr 17, 2025
Missing Authorization vulnerability in The Right Software WooCommerce Loyal Customers allows... High Unreviewed
CVE-2025-32544 was published Apr 17, 2025
Missing Authorization vulnerability in Bytes Technolab Add Product Frontend for WooCommerce... High Unreviewed
CVE-2025-32593 was published Apr 17, 2025
Missing Authorization vulnerability in webbernaut Cloak Front End Email allows Exploiting... High Unreviewed
CVE-2025-26968 was published Apr 17, 2025
Missing Authorization vulnerability in NotFound FS Poster. This issue affects FS Poster: from n/a... High Unreviewed
CVE-2025-30960 was published Apr 16, 2025
Missing Authorization vulnerability in NotFound JetMenu allows Accessing Functionality Not... High Unreviewed
CVE-2025-26953 was published Apr 16, 2025
Missing Authorization vulnerability in NotFound Unlimited Timeline allows Accessing Functionality... High Unreviewed
CVE-2025-27008 was published Apr 16, 2025
Vulnerability in the Oracle Common Applications product of Oracle E-Business Suite (component:... High Unreviewed
CVE-2025-30716 was published Apr 15, 2025
Missing Authorization vulnerability in NotFound JetPopup allows Accessing Functionality Not... High Unreviewed
CVE-2025-26944 was published Apr 15, 2025
Missing Authorization vulnerability in NotFound JetBlog allows Accessing Functionality Not... High Unreviewed
CVE-2025-26958 was published Apr 15, 2025
Missing Authorization vulnerability in Quý Lê 91 Administrator Z allows Privilege Escalation.... High Unreviewed
CVE-2025-26959 was published Apr 15, 2025
Missing Authorization vulnerability in Dmitry V. (CEO of "UKR Solution") Barcode Generator for... High Unreviewed
CVE-2025-32929 was published Apr 15, 2025
Missing Authorization vulnerability in NotFound JetTricks allows Accessing Functionality Not... High Unreviewed
CVE-2025-26942 was published Apr 15, 2025
Missing Authorization vulnerability in AWEOS GmbH Email Notifications for Updates allows... High Unreviewed
CVE-2025-26741 was published Apr 15, 2025
Missing Authorization vulnerability in EazyPlugins Eazy Plugin Manager allows Exploiting... High Unreviewed
CVE-2025-32542 was published Apr 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database