GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,672
Composer 4,466
Erlang 33
GitHub Actions 23
Go 2,167
Maven 5,398
npm 3,830
NuGet 696
pip 3,508
Pub 12
RubyGems 910
Rust 906
Swift 38

Unreviewed advisories

All unreviewed 247,876

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,262 advisories

Filter by severity

Sort by

Least recently updated

The Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin... Moderate Unreviewed

CVE-2024-13838 was published Mar 12, 2025

Rembg allows SSRF via /api/remove Moderate

CVE-2025-25301 was published for rembg (pip) Mar 11, 2025

A vulnerability, which was classified as problematic, was found in Stoque Zeev.it 4.24. This... Moderate Unreviewed

CVE-2025-2192 was published Mar 11, 2025

Under certain conditions, an SSRF vulnerability in SAP CRM and SAP S/4HANA (Interaction Center)... Low Unreviewed

CVE-2025-27430 was published Mar 11, 2025

A vulnerability has been found in Beijing Founder Electronics Founder Enjoys All-Media... Moderate Unreviewed

CVE-2025-2116 was published Mar 9, 2025

The Starter Templates by FancyWP plugin for WordPress is vulnerable to Blind Server-Side Request... Moderate Unreviewed

CVE-2024-13924 was published Mar 8, 2025

A server-side request forgery (SSRF) vulnerability has been reported to affect QuLog Center. If... Moderate Unreviewed

CVE-2024-53696 was published Mar 7, 2025

axios Requests Vulnerable To Possible SSRF and Credential Leakage via Absolute URL High

CVE-2025-27152 was published for axios (npm) Mar 7, 2025

The WPGet API – Connect to any external REST API plugin for WordPress is vulnerable to Server... Moderate Unreviewed

CVE-2024-13857 was published Mar 7, 2025

The Platform.ly for WooCommerce plugin for WordPress is vulnerable to Blind Server-Side Request... Moderate Unreviewed

CVE-2024-13904 was published Mar 7, 2025

A Server-Side Request Forgery (SSRF) in the component sort.php of Emlog Pro v2.5.4 allows... Moderate Unreviewed

CVE-2025-25827 was published Mar 6, 2025

JizhiCMS v2.5.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the component ... Critical Unreviewed

CVE-2025-25785 was published Mar 5, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.862 Application 20.0.2014... Critical Unreviewed

CVE-2025-27651 was published Mar 5, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.862 Application 20.0.2014... Critical Unreviewed

CVE-2025-27655 was published Mar 5, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.862 Application 20.0.2014... Critical Unreviewed

CVE-2025-27652 was published Mar 5, 2025

A vulnerability classified as critical has been found in zj1983 zz up to 2024-8. Affected is an... Moderate Unreviewed

CVE-2025-1848 was published Mar 3, 2025

A vulnerability classified as critical was found in zj1983 zz up to 2024-8. Affected by this... Moderate Unreviewed

CVE-2025-1849 was published Mar 3, 2025

A vulnerability, which was classified as critical, has been found in zj1983 zz up to 2024-8.... Moderate Unreviewed

CVE-2025-1833 was published Mar 3, 2025

A vulnerability, which was classified as critical, was found in Zorlan SkyCaiji 2.9. This affects... Moderate Unreviewed

CVE-2025-1799 was published Mar 1, 2025

The Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss... Moderate Unreviewed

CVE-2024-13697 was published Mar 1, 2025

The URL Media Uploader plugin for WordPress is vulnerable to Server-Side Request Forgery in all... Moderate Unreviewed

CVE-2025-1662 was published Feb 28, 2025

Memos Server-Side Request Forgery (SSRF) Moderate

CVE-2025-22952 was published for github.com/usememos/memos (Go) Feb 27, 2025

A Server-Side Request Forgery (SSRF) in the component admin_webgather.php of SUCMS v1.0 allows... High Unreviewed

CVE-2025-25760 was published Feb 27, 2025

The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for... Moderate Unreviewed

CVE-2024-13907 was published Feb 27, 2025

The OneStore Sites plugin for WordPress is vulnerable to Server-Side Request Forgery in all... Moderate Unreviewed

CVE-2024-13905 was published Feb 27, 2025

Previous 1 2 3 4 5 … 50 51 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,262 advisories