Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,876
Erlang
37
GitHub Actions
37
Go
2,526
Maven
5,000+
npm
4,189
NuGet
742
pip
3,968
Pub
12
RubyGems
947
Rust
1,030
Swift
39
Unreviewed advisories
All unreviewed
5,000+

295,373 advisories

Loading
A security vulnerability has been detected in itsourcecode Open Source Job Portal 1.0. This... Moderate Unreviewed
CVE-2025-11054 was published Sep 27, 2025
A vulnerability was detected in SourceCodester Online Hotel Reservation System 1.0. Affected is... Moderate Unreviewed
CVE-2025-11055 was published Sep 27, 2025
A vulnerability has been found in SourceCodester Pet Grooming Management Software 1.0. Affected... Moderate Unreviewed
CVE-2025-11057 was published Sep 27, 2025
A flaw has been found in ProjectsAndPrograms School Management System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-11056 was published Sep 27, 2025
The Sync Feedly plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed
CVE-2025-9894 was published Sep 27, 2025
A weakness has been identified in PHPGurukul Small CRM 4.0. This affects an unknown function of... Moderate Unreviewed
CVE-2025-11053 was published Sep 27, 2025
The HidePost plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed
CVE-2025-9896 was published Sep 27, 2025
The cForms – Light speed fast Form Builder plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed
CVE-2025-9898 was published Sep 27, 2025
The Professional Contact Form plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed
CVE-2025-9944 was published Sep 27, 2025
The Trust Reviews plugin for Google, Tripadvisor, Yelp, Airbnb and other platforms plugin for... Moderate Unreviewed
CVE-2025-9899 was published Sep 27, 2025
The VM Menu Reorder plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed
CVE-2025-9893 was published Sep 27, 2025
A vulnerability has been found in SourceCodester Pet Grooming Management Software 1.0. This... Moderate Unreviewed
CVE-2025-11051 was published Sep 27, 2025
A security flaw has been discovered in kidaze CourseSelectionSystem 1.0/5.php. The impacted... Moderate Unreviewed
CVE-2025-11052 was published Sep 27, 2025
Versions of the package algoliasearch-helper from 2.0.0-rc1 and before 3.11.2 are vulnerable to... Moderate Unreviewed
CVE-2025-3193 was published Sep 27, 2025
A vulnerability was detected in Portabilis i-Educar up to 2.10. Affected by this issue is some... Moderate Unreviewed
CVE-2025-11049 was published Sep 27, 2025
The WP Statistics – The Most Popular Privacy-Friendly Analytics Plugin plugin for WordPress is... High Unreviewed
CVE-2025-9816 was published Sep 27, 2025
Versions of the package github.com/nyaruka/phonenumbers before 1.2.2 are vulnerable to Improper... Moderate Unreviewed
CVE-2025-10954 was published Sep 27, 2025
A flaw has been found in Portabilis i-Educar up to 2.10. This affects an unknown part of the file... Moderate Unreviewed
CVE-2025-11050 was published Sep 27, 2025
The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2025-10498 was published Sep 27, 2025
The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2025-10499 was published Sep 27, 2025
The Team Members plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the first... Moderate Unreviewed
CVE-2025-8440 was published Sep 27, 2025
IBM Storage TS4500 Library 1.11.0.0 and 2.11.0.0 is vulnerable to cross-site request forgery... Moderate Unreviewed
CVE-2024-43192 was published Sep 27, 2025
IBM Storage TS4500 Library 1.11.0.0 and 2.11.0.0 is vulnerable to cross-site scripting. This... Moderate Unreviewed
CVE-2025-36239 was published Sep 27, 2025
IBM Lakehouse (watsonx.data 2.2) stores potentially sensitive information in log files that could... Low Unreviewed
CVE-2025-36144 was published Sep 27, 2025
A weakness has been identified in Portabilis i-Educar up to 2.10. Affected is an unknown function... Moderate Unreviewed
CVE-2025-11047 was published Sep 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database