GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,526
Composer 4,831
Erlang 36
GitHub Actions 33
Go 2,451
Maven 5,852
npm 4,073
NuGet 723
pip 3,868
Pub 12
RubyGems 943
Rust 1,010
Swift 39

Unreviewed advisories

All unreviewed 266,481

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

125,378 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Stored cross-site scripting (XSS) in the web interface of MiR software versions prior to 3.0.0 on... Moderate Unreviewed

CVE-2025-9225 was published Aug 20, 2025

MiR software versions prior to version 3.0.0 have insufficient authorization controls when... Moderate Unreviewed

CVE-2025-9228 was published Aug 20, 2025

Information disclosure vulnerability in error handling in MiR software prior to version 3.0.0... Moderate Unreviewed

CVE-2025-9229 was published Aug 20, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-54046 was published Aug 20, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-49436 was published Aug 20, 2025

Missing Authorization vulnerability in themifyme Themify Builder allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-49396 was published Aug 20, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-49889 was published Aug 20, 2025

Cross-Site Request Forgery (CSRF) vulnerability in wptasker WP Discord Post Plus – ... Moderate Unreviewed

CVE-2025-49896 was published Aug 20, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-49428 was published Aug 20, 2025

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetEngine allows... Moderate Unreviewed

CVE-2025-53196 was published Aug 20, 2025

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetTabs allows... Moderate Unreviewed

CVE-2025-53985 was published Aug 20, 2025

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetElements For... Moderate Unreviewed

CVE-2025-53983 was published Aug 20, 2025

Path Traversal vulnerability in miniOrange Prevent files / folders access allows Path Traversal.... Moderate Unreviewed

CVE-2025-53561 was published Aug 20, 2025

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetMenu allows... Moderate Unreviewed

CVE-2025-53987 was published Aug 20, 2025

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetPopup allows... Moderate Unreviewed

CVE-2025-53993 was published Aug 20, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in Bearsthemes Alone... Moderate Unreviewed

CVE-2025-54019 was published Aug 20, 2025

Missing Authorization vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates allows... Moderate Unreviewed

CVE-2025-54025 was published Aug 20, 2025

Missing Authorization vulnerability in Webba Appointment Booking Webba Booking allows Exploiting... Moderate Unreviewed

CVE-2025-54040 was published Aug 20, 2025

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetBlocks For... Moderate Unreviewed

CVE-2025-53988 was published Aug 20, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-49397 was published Aug 20, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-49389 was published Aug 20, 2025

The ColorMag theme for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed

CVE-2025-9202 was published Aug 20, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-49392 was published Aug 20, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-49400 was published Aug 20, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-49411 was published Aug 20, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

125,378 advisories