GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,438
Composer 4,411
Erlang 33
GitHub Actions 22
Go 2,146
Maven 5,316
npm 3,808
NuGet 687
pip 3,481
Pub 12
RubyGems 897
Rust 899
Swift 38

Unreviewed advisories

All unreviewed 246,071

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

28,531 advisories

Filter by severity

Sort by

Least recently updated

The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is... Moderate Unreviewed

CVE-2025-1291 was published Mar 1, 2025

The Page Builder by SiteOrigin plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-1459 was published Mar 1, 2025

The TemplatesNext ToolKit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-13559 was published Mar 1, 2025

The Currency Switcher for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2024-9217 was published Mar 1, 2025

The Counter Box: Add Engaging Countdowns, Timers & Counters to Your WordPress Site plugin for... Moderate Unreviewed

CVE-2024-13901 was published Mar 1, 2025

The SKU Generator for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2024-9212 was published Mar 1, 2025

The Clicface Trombi plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-0820 was published Mar 1, 2025

Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the... Moderate Unreviewed

CVE-2025-25429 was published Feb 28, 2025

A Stored Cross-Site Scripting (XSS) vulnerability exists in SeedDMS 6.0.29. A user or rogue admin... Moderate Unreviewed

CVE-2025-25461 was published Feb 28, 2025

HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could... Moderate Unreviewed

CVE-2025-1749 was published Feb 28, 2025

Cross-Site Scripting (XSS) vulnerability in Soteshop, versions prior to 8.3.4, which could allow... Moderate Unreviewed

CVE-2025-1776 was published Feb 28, 2025

wuzhicms v4.1.0 has a Cross Site Scripting (XSS) vulnerability in del function in \coreframe\app... Moderate Unreviewed

CVE-2025-25916 was published Feb 28, 2025

HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could... Moderate Unreviewed

CVE-2025-1748 was published Feb 28, 2025

HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could... Moderate Unreviewed

CVE-2025-1747 was published Feb 28, 2025

Cross-Site Scripting vulnerability in OpenCart versions prior to 4.1.0. This vulnerability allows... Moderate Unreviewed

CVE-2025-1746 was published Feb 28, 2025

The Site Mailer – SMTP Replacement, Email API Deliverability & Email Log plugin for WordPress is... Moderate Unreviewed

CVE-2025-1319 was published Feb 28, 2025

The WOW Entrance Effects (WEE!) plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-1560 was published Feb 28, 2025

The Pricing Table by PickPlugins plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-13469 was published Feb 28, 2025

The Modal Portfolio plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all... Moderate Unreviewed

CVE-2024-13851 was published Feb 28, 2025

The SecuPress Free — WordPress Security plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-9019 was published Feb 28, 2025

The Product Catalog Simple plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-1405 was published Feb 28, 2025

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-1571 was published Feb 28, 2025

The User Registration & Membership – Custom Registration Form, Login Form, and User Profile... Moderate Unreviewed

CVE-2025-1511 was published Feb 28, 2025

The Advanced AJAX Product Filters plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2025-1505 was published Feb 28, 2025

The WordPress Portfolio Builder – Portfolio Gallery plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2025-1757 was published Feb 28, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

28,531 advisories