GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,497
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,096
npm 4,255
NuGet 760
pip 4,036
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,673

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

275,673 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security flaw has been discovered in code-projects Simple Online Hotel Reservation System 2.0.... Moderate Unreviewed

CVE-2025-12594 was published Nov 2, 2025

A vulnerability was identified in code-projects Simple Online Hotel Reservation System 2.0. The... Moderate Unreviewed

CVE-2025-12593 was published Nov 2, 2025

/etc/avahi/services/z9.service can be Arbitrarily Written.This issue affects BLU-IC2: through 1... Low Unreviewed

CVE-2025-12602 was published Nov 1, 2025

Denial of Service Due to SlowLoris.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1... Critical Unreviewed

CVE-2025-12601 was published Nov 1, 2025

Web UI Malfunction when setting unexpected locale via API.This issue affects BLU-IC2: through 1... Critical Unreviewed

CVE-2025-12600 was published Nov 1, 2025

Multiple Devices are Sharing the Same Secrets for SDKSocket (TCP/5000).This issue affects BLU-IC2... Critical Unreviewed

CVE-2025-12599 was published Nov 1, 2025

/etc/timezone can be Arbitrarily Written.This issue affects BLU-IC2: through 1.19.5; BLU-IC4:... Low Unreviewed

CVE-2025-12603 was published Nov 1, 2025

IBM i 7.6, 7.5, 7.4, 7.3, and 7.2 is vulnerable to privilege escalation caused by an invalid IBM... High Unreviewed

CVE-2025-36367 was published Nov 1, 2025

The RESTful Content Syndication plugin for WordPress is vulnerable to arbitrary file uploads due... High Unreviewed

CVE-2025-12171 was published Nov 1, 2025

The Import WP – Export and Import CSV and XML files to WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2025-12137 was published Nov 1, 2025

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via... High Unreviewed

CVE-2025-6574 was published Nov 1, 2025

The kallyas theme for WordPress is vulnerable to Stored Cross-Site Scripting via several of the... Moderate Unreviewed

CVE-2025-6988 was published Nov 1, 2025

The kallyas theme for WordPress is vulnerable to Remote Code Execution in all versions up to, and... High Unreviewed

CVE-2025-6990 was published Nov 1, 2025

The Advanced Ads – Ad Manager & AdSense plugin for WordPress is vulnerable to Remote Code... High Unreviewed

CVE-2025-10487 was published Nov 1, 2025

The WP Delicious – Recipe Plugin for Food Bloggers (formerly Delicious Recipes) plugin for... High Unreviewed

CVE-2025-11755 was published Nov 1, 2025

The Tablesome Table – Contact Form DB – WPForms, CF7, Gravity, Forminator, Fluent plugin for... Critical Unreviewed

CVE-2025-11499 was published Nov 1, 2025

The WP Discourse plugin for WordPress is vulnerable to Information Exposure in all versions up to... Moderate Unreviewed

CVE-2025-11983 was published Nov 1, 2025

The Folderly plugin for WordPress is vulnerable to unauthorized modification of data due to an... Moderate Unreviewed

CVE-2025-12038 was published Nov 1, 2025

The Employee Spotlight – Team Member Showcase & Meet the Team Plugin plugin for WordPress is... Moderate Unreviewed

CVE-2025-12090 was published Nov 1, 2025

The Qi Blocks plugin for WordPress is vulnerable to Missing Authorization in all versions up to,... Moderate Unreviewed

CVE-2025-12180 was published Nov 1, 2025

The Schema Scalpel plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the post... Moderate Unreviewed

CVE-2025-12118 was published Nov 1, 2025

The wpForo Forum plugin for WordPress is vulnerable to SQL Injection via the Subscriptions... Moderate Unreviewed

CVE-2025-11740 was published Nov 1, 2025

The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-11502 was published Nov 1, 2025

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via... High Unreviewed

CVE-2025-5949 was published Nov 1, 2025

The List category posts plugin for WordPress is vulnerable to Information Exposure in all... Moderate Unreviewed

CVE-2025-11377 was published Nov 1, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

275,673 advisories