GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,496
Composer 4,828
Erlang 36
GitHub Actions 33
Go 2,446
Maven 5,843
npm 4,063
NuGet 723
pip 3,866
Pub 12
RubyGems 943
Rust 1,009
Swift 39

Unreviewed advisories

All unreviewed 265,995

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

32,586 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue has been discovered in GitLab CE/EE affecting all versions from 18.2 before 18.2.2 that,... High Unreviewed

CVE-2025-7739 was published Aug 13, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 18.1 before 18.1.4, and... High Unreviewed

CVE-2025-6186 was published Aug 13, 2025

A cross-site scripting (XSS) vulnerability in the TextBlockModule.php component of hortusfox-web... Moderate Unreviewed

CVE-2025-45316 was published Aug 13, 2025

A cross-site scripting (XSS) vulnerability in the /controller/admin.php endpoint of hortusfox-web... Moderate Unreviewed

CVE-2025-45315 was published Aug 13, 2025

A cross-site scripting (XSS) vulnerability in the /Calendar endpoint of hortusfox-web v4.4 allows... Moderate Unreviewed

CVE-2025-45314 was published Aug 13, 2025

A vulnerability was found in Portabilis i-Educar up to 2.10. This issue affects some unknown... Moderate Unreviewed

CVE-2025-8918 was published Aug 13, 2025

A Cross-Site Scripting (XSS) vulnerability exists in SpatialReference.org (OSGeo/spatialreference... Moderate Unreviewed

CVE-2025-50690 was published Aug 13, 2025

Cross-Site Scripting (XSS) vulnerability found in MarkTwo commit... Moderate Unreviewed

CVE-2025-51691 was published Aug 13, 2025

Organization Portal System developed by WellChoose has a Reflected Cross-site Scripting... Moderate Unreviewed

CVE-2025-8910 was published Aug 13, 2025

Organization Portal System developed by WellChoose has a Reflected Cross-site Scripting... Moderate Unreviewed

CVE-2025-8911 was published Aug 13, 2025

IBM WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.8 is vulnerable to stored... Moderate Unreviewed

CVE-2025-36000 was published Aug 12, 2025

An Improper neutralization of input during web page generation ('cross-site scripting')... Moderate Unreviewed

CVE-2025-32932 was published Aug 12, 2025

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft... Moderate Unreviewed

CVE-2025-49745 was published Aug 12, 2025

Adobe Commerce versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and... High Unreviewed

CVE-2025-49557 was published Aug 12, 2025

The Master Addons – Elementor Addons with White Label, Free Widgets, Hover Effects, Conditions, &... Moderate Unreviewed

CVE-2025-8874 was published Aug 12, 2025

The Software Issue Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-8314 was published Aug 12, 2025

The Inline Stock Quotes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-8688 was published Aug 12, 2025

The Simple Responsive Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting in... Moderate Unreviewed

CVE-2025-8690 was published Aug 12, 2025

The GMap Generator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘h’... Moderate Unreviewed

CVE-2025-8568 was published Aug 12, 2025

The Wp chart generator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-8685 was published Aug 12, 2025

The RT Easy Builder – Advanced addons for Elementor plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2025-8462 was published Aug 12, 2025

SAP NetWeaver Application Server for ABAP has cross-site scripting vulnerability. Due to this, an... Moderate Unreviewed

CVE-2025-42942 was published Aug 12, 2025

Due to a Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver ABAP Platform, an... Moderate Unreviewed

CVE-2025-42948 was published Aug 12, 2025

SAP NetWeaver Application Server ABAP (BIC Document) allows an unauthenticated attacker to craft... Moderate Unreviewed

CVE-2025-42975 was published Aug 12, 2025

A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. Affected by this vulnerability is... Moderate Unreviewed

CVE-2025-8847 was published Aug 11, 2025

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

32,586 advisories