GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,875
Composer 4,778
Erlang 35
GitHub Actions 29
Go 2,334
Maven 5,642
npm 3,966
NuGet 713
pip 3,763
Pub 12
RubyGems 923
Rust 975
Swift 38

Unreviewed advisories

All unreviewed 259,221

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

35,485 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability, which was classified as problematic, was found in CodeAstro Food Ordering System... Moderate Unreviewed

CVE-2025-6131 was published Jun 16, 2025

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been... Moderate Unreviewed

CVE-2025-6127 was published Jun 16, 2025

A vulnerability was found in PHPGurukul Rail Pass Management System 1.0. It has been declared as... Moderate Unreviewed

CVE-2025-6126 was published Jun 16, 2025

A vulnerability was found in PHPGurukul Rail Pass Management System 1.0. It has been classified... Moderate Unreviewed

CVE-2025-6125 was published Jun 16, 2025

Reflected Cross-Site Scripting (XSS) vulnerability in /pages/search-results-page in Nosto, which... Moderate Unreviewed

CVE-2025-40726 was published Jun 16, 2025

A stored Cross-site Scripting (XSS) vulnerability affecting Opportunity Management in Project... High Unreviewed

CVE-2025-4987 was published Jun 16, 2025

A Reflected Cross Site Scripting (XSS) vulnerability was found in '/search' in Phoenix Site CMS... Moderate Unreviewed

CVE-2025-40727 was published Jun 16, 2025

Reflected Cross-Site Scripting (XSS) in /customer_support/index.php in Customer Support System v1... Moderate Unreviewed

CVE-2025-40729 was published Jun 16, 2025

A vulnerability was found in comfyanonymous comfyui up to 0.3.39. It has been declared as... Moderate Unreviewed

CVE-2025-6092 was published Jun 15, 2025

An input neutralization vulnerability in the Server Name form and API Key form components of... High Unreviewed

CVE-2025-5990 was published Jun 15, 2025

Unsanitized user-supplied data saved in the PingFederate Administrative Console could trigger the... Moderate Unreviewed

CVE-2024-25573 was published Jun 15, 2025

The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for... Moderate Unreviewed

CVE-2025-4667 was published Jun 14, 2025

The YITH WooCommerce Wishlist plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-5238 was published Jun 14, 2025

The Slider, Gallery, and Carousel by MetaSlider plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2025-5337 was published Jun 14, 2025

The DIOT SCADA with MQTT plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-4216 was published Jun 14, 2025

The Click to Chat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data... Moderate Unreviewed

CVE-2025-5336 was published Jun 14, 2025

The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-5589 was published Jun 14, 2025

The kk Youtube Video plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-6061 was published Jun 14, 2025

The Easy Flashcards plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-6040 was published Jun 14, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-48917 was published Jun 13, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-48918 was published Jun 13, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-48915 was published Jun 13, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-48920 was published Jun 13, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-48919 was published Jun 13, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-48914 was published Jun 13, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

35,485 advisories