GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,599
Composer 4,464
Erlang 33
GitHub Actions 22
Go 2,163
Maven 5,348
npm 3,821
NuGet 696
pip 3,502
Pub 12
RubyGems 909
Rust 904
Swift 38

Unreviewed advisories

All unreviewed 247,595

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

115,886 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in GitLab EE affecting all versions starting with 12.3 before 17.7.7, 17... Moderate Unreviewed

CVE-2025-1257 was published Mar 13, 2025

The implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0.3.0 exhibits signature... Moderate Unreviewed

CVE-2020-36843 was published Mar 13, 2025

The WP Recipe Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-1503 was published Mar 13, 2025

An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7,... Moderate Unreviewed

CVE-2024-12380 was published Mar 13, 2025

The WordPress Report Brute Force Attacks and Login Protection ReportAttacks Plugins plugin for... Moderate Unreviewed

CVE-2025-2250 was published Mar 13, 2025

An issue was discovered in GitLab CE/EE affecting all versions before 17.7.7, 17.8 prior to 17.8... Moderate Unreviewed

CVE-2024-13054 was published Mar 13, 2025

The Business Directory Plugin – Easy Listing Directories for WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2024-13887 was published Mar 13, 2025

An issue has been discovered in GitLab EE/CE affecting all versions starting from 16.9 before 17... Moderate Unreviewed

CVE-2025-0652 was published Mar 13, 2025

The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-2104 was published Mar 13, 2025

The CC-IMG-Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-1559 was published Mar 13, 2025

The CRM and Lead Management by vcita plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-13703 was published Mar 13, 2025

A vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a remote attacker... Moderate Unreviewed

CVE-2025-0118 was published Mar 12, 2025

A vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated admin on the... Moderate Unreviewed

CVE-2025-0115 was published Mar 12, 2025

A Denial of Service (DoS) vulnerability in Palo Alto Networks PAN-OS software causes the firewall... Moderate Unreviewed

CVE-2025-0116 was published Mar 12, 2025

A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local... Moderate Unreviewed

CVE-2025-20177 was published Mar 12, 2025

CWE-532: Insertion of Sensitive Information into Log Files vulnerability exists that could cause... Moderate Unreviewed

CVE-2025-2002 was published Mar 12, 2025

Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker to cause a denial of... Moderate Unreviewed

CVE-2025-25566 was published Mar 12, 2025

An issue was discovered in BMC Remedy Mid Tier 7.6.04. The web application allows stored HTML... Moderate Unreviewed

CVE-2024-34398 was published Mar 12, 2025

AlekSIS-Core is vulnerable to Incorrect Access Control. Unauthenticated users can access all PDF... Moderate Unreviewed

CVE-2025-25683 was published Mar 12, 2025

An issue was discovered in Open5GS v2.7.2. When a UE switches between two gNBs and sends a... Moderate Unreviewed

CVE-2025-25774 was published Mar 12, 2025

A vulnerability in the access control list (ACL) processing in the egress direction of Cisco IOS... Moderate Unreviewed

CVE-2025-20145 was published Mar 12, 2025

Xerox Desktop Print Experience application contains a Local Privilege Escalation (LPE)... Moderate Unreviewed

CVE-2025-1984 was published Mar 12, 2025

A vulnerability in the hybrid access control list (ACL) processing of IPv4 packets in Cisco IOS... Moderate Unreviewed

CVE-2025-20144 was published Mar 12, 2025

A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local... Moderate Unreviewed

CVE-2025-20143 was published Mar 12, 2025

XPixelGroup BasicSR through 1.4.2 might locally allow code execution in contrived situations... Moderate Unreviewed

CVE-2024-27763 was published Mar 12, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

115,886 advisories