Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
40
Go
2,957
Maven
5,000+
npm
4,607
NuGet
788
pip
4,307
Pub
12
RubyGems
984
Rust
1,121
Swift
49
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

289,031 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in Restajet Information Technologies Inc. Online... High Unreviewed
CVE-2025-1927 was published Dec 19, 2025
The Image Photo Gallery Final Tiles Grid plugin for WordPress is vulnerable to authorization... Moderate Unreviewed
CVE-2025-14455 was published Dec 19, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Restajet Information... Moderate Unreviewed
CVE-2025-1885 was published Dec 19, 2025
A stored cross-site scripting (XSS) vulnerability exists in pdfonline.foxit.com within the Layer... Moderate Unreviewed
CVE-2025-66519 was published Dec 19, 2025
A stored cross-site scripting (XSS) vulnerability exists in the Digital IDs functionality of the... Moderate Unreviewed
CVE-2025-66522 was published Dec 19, 2025
A stored cross-site scripting (XSS) vulnerability exists in webplugins.foxit.com. A postMessage... Moderate Unreviewed
CVE-2025-66500 was published Dec 19, 2025
A stored cross-site scripting (XSS) vulnerability exists in pdfonline.foxit.com within the... Moderate Unreviewed
CVE-2025-66501 was published Dec 19, 2025
A stored cross-site scripting (XSS) vulnerability exists in pdfonline.foxit.com within the Page... Moderate Unreviewed
CVE-2025-66502 was published Dec 19, 2025
A stored cross-site scripting (XSS) vulnerability exists in the Portfolio feature of the Foxit... Moderate Unreviewed
CVE-2025-66520 was published Dec 19, 2025
A stored cross-site scripting (XSS) vulnerability exists in pdfonline.foxit.com within the... Moderate Unreviewed
CVE-2025-66521 was published Dec 19, 2025
The Colibri Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2025-11747 was published Dec 19, 2025
The BA Book Everything plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2025-14449 was published Dec 19, 2025
A heap-based buffer overflow vulnerability exists in the PDF parsing of Foxit PDF Reader when... High Unreviewed
CVE-2025-66499 was published Dec 19, 2025
The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-14151 was published Dec 19, 2025
The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin for WordPress is... Moderate Unreviewed
CVE-2025-13754 was published Dec 19, 2025
The HTML5 Audio Player – The Ultimate No-Code Podcast, MP3 & Audio Player plugin for WordPress is... High Unreviewed
CVE-2025-13999 was published Dec 19, 2025
A use-after-free vulnerability exists in the annotation handling of Foxit PDF Reader before 2025... High Unreviewed
CVE-2025-66495 was published Dec 19, 2025
A use-after-free vulnerability exists in the PDF file parsing of Foxit PDF Reader before 2025.2.1... High Unreviewed
CVE-2025-66494 was published Dec 19, 2025
A use-after-free vulnerability exists in the AcroForm handling of Foxit PDF Reader and Foxit PDF... High Unreviewed
CVE-2025-66493 was published Dec 19, 2025
An information disclosure vulnerability in M-Files Server before versions 25.12.15491.7, 25.8 LTS... High Unreviewed
CVE-2025-13008 was published Dec 19, 2025
A flaw was found in libssh2 before 1.8.1. A server could send a multiple keyboard interactive... High Unreviewed
CVE-2019-3863 was published May 14, 2022
A vulnerability was determined in code-projects Scholars Tracking System 1.0. The affected... Moderate Unreviewed
CVE-2025-14940 was published Dec 19, 2025
Rejected reason: Not used Unknown Unreviewed
CVE-2025-68486 was published Dec 19, 2025
Rejected reason: Not used Unknown Unreviewed
CVE-2025-68490 was published Dec 19, 2025
Rejected reason: Not used Unknown Unreviewed
CVE-2025-68489 was published Dec 19, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database