GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,497
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,096
npm 4,255
NuGet 760
pip 4,036
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,687

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

5,281 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Jenkins Themis Plugin is missing a permission check Moderate

CVE-2025-64137 was published for org.jenkins-ci.plugins:themis (Maven) Oct 29, 2025

Jenkins Nexus Task Runner Plugin is missing a permission check Moderate

CVE-2025-64142 was published for org.jenkins-ci.plugins:nexus-task-runner (Maven) Oct 29, 2025

Missing Authorization vulnerability in BoldGrid Client Invoicing by Sprout Invoices sprout... Moderate Unreviewed

CVE-2025-64229 was published Oct 29, 2025

Missing Authorization vulnerability in Evergreen Content Poster Evergreen Content Poster... Moderate Unreviewed

CVE-2025-64234 was published Oct 29, 2025

Missing Authorization vulnerability in Premmerce Premmerce Wholesale Pricing for WooCommerce... Moderate Unreviewed

CVE-2025-64285 was published Oct 29, 2025

Missing Authorization vulnerability in StylemixThemes Masterstudy Elementor Widgets masterstudy... Moderate Unreviewed

CVE-2025-64211 was published Oct 29, 2025

Missing Authorization vulnerability in Strategy11 Team Business Directory business-directory... Moderate Unreviewed

CVE-2025-64219 was published Oct 29, 2025

Missing Authorization vulnerability in StylemixThemes MasterStudy LMS Pro masterstudy-lms... Moderate Unreviewed

CVE-2025-64212 was published Oct 29, 2025

Missing Authorization vulnerability in StylemixThemes Masterstudy Elementor Widgets masterstudy... Moderate Unreviewed

CVE-2025-64210 was published Oct 29, 2025

Missing Authorization vulnerability in WpEstate wpresidence wpresidence allows Exploiting... Moderate Unreviewed

CVE-2025-64199 was published Oct 29, 2025

GitLab has remediated an issue in EE affecting all versions from 17.1 before 18.3.5, 18.4 before... High Unreviewed

CVE-2025-11702 was published Oct 29, 2025

Missing Authorization vulnerability in solwin Blog Designer PRO blog-designer-pro allows... Moderate Unreviewed

CVE-2025-58711 was published Oct 29, 2025

The Anti-Malware Security and Brute-Force Firewall plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-11705 was published Oct 29, 2025

Missing Authorization vulnerability in Facebook Facebook for WooCommerce allows Exploiting... Moderate Unreviewed

CVE-2025-64296 was published Oct 29, 2025

A remote unauthenticated attacker may use the unauthenticated C++ API to access or modify... High Unreviewed

CVE-2025-59461 was published Oct 27, 2025

Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly... High Unreviewed

CVE-2025-62952 was published Oct 27, 2025

Missing Authorization vulnerability in nanbu Welcart e-Commerce usc-e-shop allows Exploiting... High Unreviewed

CVE-2025-62953 was published Oct 27, 2025

Missing Authorization vulnerability in Codeinwp Revive Old Posts tweet-old-post allows Exploiting... High Unreviewed

CVE-2025-62954 was published Oct 27, 2025

Missing Authorization vulnerability in RealMag777 MDTF wp-meta-data-filter-and-taxonomy-filter... High Unreviewed

CVE-2025-62964 was published Oct 27, 2025

Missing Authorization vulnerability in wpseek Admin Management Xtended admin-management-xtended... High Unreviewed

CVE-2025-62965 was published Oct 27, 2025

Missing Authorization vulnerability in Apiki GoCache gocache-cdn allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-62966 was published Oct 27, 2025

Missing Authorization vulnerability in Spencer Haws Link Whisper Free link-whisper allows... Moderate Unreviewed

CVE-2025-62970 was published Oct 27, 2025

Missing Authorization vulnerability in WPWebinarSystem WebinarPress wp-webinarsystem allows... Moderate Unreviewed

CVE-2025-62972 was published Oct 27, 2025

Missing Authorization vulnerability in Themekraft BuddyForms buddyforms allows Accessing... Moderate Unreviewed

CVE-2025-62973 was published Oct 27, 2025

Missing Authorization vulnerability in Joovii Sendle Shipping official-sendle-shipping-method... Moderate Unreviewed

CVE-2025-62976 was published Oct 27, 2025

Previous 12…212 Next

Previous 1 2 3 4 5 … 211 212 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,281 advisories