GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
265,123 advisories
Filter by severity
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Unknown
Unreviewed
CVE-2024-6909
was published
Feb 9, 2025
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Unknown
Unreviewed
CVE-2024-5183
was published
Feb 9, 2025
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Unknown
Unreviewed
CVE-2023-4927
was published
Feb 9, 2025
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Unknown
Unreviewed
CVE-2025-0517
was published
Feb 9, 2025
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Unknown
Unreviewed
CVE-2024-8377
was published
Feb 9, 2025
The WP Directorybox Manager plugin for WordPress is vulnerable to authentication bypass in...
Critical
Unreviewed
CVE-2025-0316
was published
Feb 9, 2025
The DWT - Directory & Listing WordPress Theme is vulnerable to Stored Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2025-0169
was published
Feb 9, 2025
IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 and IBM UrbanCode Deploy (UCD) 7.0...
Moderate
Unreviewed
CVE-2024-54176
was published
Feb 8, 2025
The Simple add pages or posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
Moderate
Unreviewed
CVE-2024-13850
was published
Feb 8, 2025
A vulnerability, which was classified as critical, was found in CoinRemitter 0.0.1/0.0.2 on...
Moderate
Unreviewed
CVE-2025-1117
was published
Feb 8, 2025
A vulnerability, which was classified as critical, has been found in Dreamvention Live AJAX...
Moderate
Unreviewed
CVE-2025-1116
was published
Feb 8, 2025
A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this...
Moderate
Unreviewed
CVE-2025-1115
was published
Feb 8, 2025
A vulnerability classified as problematic has been found in newbee-mall 1.0. Affected is the...
Moderate
Unreviewed
CVE-2025-1114
was published
Feb 8, 2025
A vulnerability was found in taisan tarzan-cms up to 1.0.0. It has been rated as critical. This...
Moderate
Unreviewed
CVE-2025-1113
was published
Feb 8, 2025
An issue in TPLINK TL-WPA 8630 TL-WPA8630(US)_V2_2.0.4 Build 20230427 allows a remote attacker to...
High
Unreviewed
CVE-2024-57357
was published
Feb 8, 2025
A reflected Cross-Site Scripting (XSS) vulnerability exists in /webscan/sqlmap/index.html in...
Moderate
Unreviewed
CVE-2024-57278
was published
Feb 8, 2025
A reflected Cross-Site Scripting (XSS) vulnerability has been identified in the LDAP User Manager...
Moderate
Unreviewed
CVE-2024-57279
was published
Feb 8, 2025
SQL injection vulnerability in Beijing Guoju Information Technology Co., Ltd JeecgBoot v.3.7.2...
High
Unreviewed
CVE-2024-57606
was published
Feb 8, 2025
An issue in Brainasoft Braina v2.8 allows a remote attacker to obtain sensitive information via...
High
Unreviewed
CVE-2024-55272
was published
Feb 8, 2025
An issue in trojan v.2.0.0 through v.2.15.3 allows a remote attacker to escalate privileges via...
Critical
Unreviewed
CVE-2024-55215
was published
Feb 8, 2025
An error when handling authorization related to the import / export interfaces on the RISC...
Moderate
Unreviewed
CVE-2021-41528
was published
Feb 7, 2025
Utilization of a module presented a security risk by allowing the deserialization of untrusted...
Moderate
Unreviewed
CVE-2021-27017
was published
Feb 7, 2025
An error related to the 2-factor authorization (2FA) on the RISC Platform prior to the saas-2021...
Low
Unreviewed
CVE-2021-41527
was published
Feb 7, 2025
A vulnerability classified as critical has been found in CmsEasy 7.7.7.9. This affects the...
Moderate
Unreviewed
CVE-2025-1106
was published
Feb 7, 2025
Connect-CMS information that is restricted to viewing is visible
High
GHSA-2237-5r9w-vm8j
was published
for
opensource-workshop/connect-cms
(Composer)
Feb 7, 2025
ProTip!
Advisories are also available from the
GraphQL API