GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,464
Composer 5,137
Erlang 40
GitHub Actions 38
Go 2,831
Maven 6,209
npm 4,462
NuGet 775
pip 4,226
Pub 12
RubyGems 972
Rust 1,093
Swift 47

Unreviewed advisories

All unreviewed 285,973

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,366 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In SchedMD Slurm before 24.11.5, 24.05.8, and 23.11.11, the accounting system can allow a... Moderate Unreviewed

CVE-2025-43904 was published Jan 16, 2026

A security vulnerability in the /apis/dashboard.grafana.app/* endpoints allows authenticated... High Unreviewed

CVE-2026-0713 was published Jan 15, 2026

Lack of authorization of the InputManager D-Bus interface in InputPlumber versions before v0.63.0... High Unreviewed

CVE-2025-66005 was published Jan 14, 2026

The Float Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed

CVE-2025-15513 was published Jan 14, 2026

Dreamweaver Desktop versions 21.6 and earlier are affected by an Incorrect Authorization... High Unreviewed

CVE-2026-21274 was published Jan 13, 2026

The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in... Moderate Unreviewed

CVE-2026-0684 was published Jan 13, 2026

Weaknesses in the authorization mechanisms of Viafirma Documents v3.7.129 allow an authenticated... High Unreviewed

CVE-2025-41078 was published Jan 12, 2026

The Templately plugin for WordPress is vulnerable to Arbitrary File Write in all versions up to,... Moderate Unreviewed

CVE-2026-0831 was published Jan 10, 2026

The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-14943 was published Jan 10, 2026

### Details On October 1, 2025, Palantir discovered that images uploaded through the Dossier... Low Unreviewed

CVE-2025-62487 was published Jan 10, 2026

The WP Table Builder – Drag & Drop Table Builder plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-13753 was published Jan 9, 2026

OPEXUS eCASE Audit allows an authenticated attacker to modify client-side JavaScript or craft... High Unreviewed

CVE-2026-22230 was published Jan 8, 2026

The Awesome Hotel Booking plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed

CVE-2025-14352 was published Jan 7, 2026

iDS6 DSSPro Digital Signage System 6.2 contains an improper access control vulnerability that... High Unreviewed

CVE-2020-36920 was published Jan 6, 2026

Plex Media Server (PMS) through 1.42.2.10156 allows retrieval of a permanent access token via a ... High Unreviewed

CVE-2025-69414 was published Jan 2, 2026

In the plex.tv backend for Plex Media Server (PMS) through 2025-12-31, a non-server device token... Moderate Unreviewed

CVE-2025-69416 was published Jan 2, 2026

In the plex.tv backend for Plex Media Server (PMS) through 2025-12-31, a non-server device token... Moderate Unreviewed

CVE-2025-69417 was published Jan 2, 2026

A weakness has been identified in JeecgBoot up to 3.9.0. Affected by this vulnerability is the... Low Unreviewed

CVE-2025-15126 was published Dec 28, 2025

A security flaw has been discovered in JeecgBoot up to 3.9.0. Affected is the function... Low Unreviewed

CVE-2025-15125 was published Dec 28, 2025

A vulnerability was identified in JeecgBoot up to 3.9.0. This impacts the function... Low Unreviewed

CVE-2025-15124 was published Dec 28, 2025

A vulnerability was determined in JeecgBoot up to 3.9.0. This affects an unknown function of the... Low Unreviewed

CVE-2025-15123 was published Dec 28, 2025

A flaw has been found in JeecgBoot up to 3.9.0. Impacted is the function getDeptRoleList of the... Low Unreviewed

CVE-2025-15120 was published Dec 28, 2025

A vulnerability was found in JeecgBoot up to 3.9.0. The impacted element is the function... Low Unreviewed

CVE-2025-15122 was published Dec 28, 2025

A vulnerability was detected in JeecgBoot up to 3.9.0. This issue affects the function... Low Unreviewed

CVE-2025-15119 was published Dec 28, 2025

A security flaw has been discovered in youlaitech youlai-mall 1.0.0/2.0.0. This affects the... Moderate Unreviewed

CVE-2025-15085 was published Dec 25, 2025

Previous1…95 Next

Previous 1 2 3 4 5 … 94 95 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,366 advisories