Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,904
Erlang
38
GitHub Actions
38
Go
2,566
Maven
5,000+
npm
4,237
NuGet
753
pip
4,001
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,139 advisories

Loading
Mattermost has a Missing Authorization vulnerability Moderate
CVE-2025-41410 was published for github.com/mattermost/mattermost-server (Go) Oct 16, 2025
Mattermost has a Missing Authorization vulnerability Moderate
CVE-2025-41443 was published for github.com/mattermost/mattermost-server (Go) Oct 16, 2025
The Classified Pro theme for WordPress is vulnerable to unauthorized plugin installation due to a... High Unreviewed
CVE-2025-10706 was published Oct 16, 2025
The Felan Framework plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2025-10849 was published Oct 16, 2025
Mattermost has a Missing Authorization vulnerability High
CVE-2025-58075 was published for github.com/mattermost/mattermost-server (Go) Oct 16, 2025
Mattermost has a Missing Authorization vulnerability High
CVE-2025-58073 was published for github.com/mattermost/mattermost-server (Go) Oct 16, 2025
The WPBifröst – Instant Passwordless Temporary Login Links plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-10299 was published Oct 15, 2025
The Library Management System plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed
CVE-2025-10303 was published Oct 15, 2025
The WhyDonate – FREE Donate button – Crowdfunding – Fundraising plugin for WordPress is... Moderate Unreviewed
CVE-2025-10186 was published Oct 15, 2025
The Zip Attachments plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed
CVE-2025-11701 was published Oct 15, 2025
The YourMembership Single Sign On – YM SSO Login plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-10648 was published Oct 15, 2025
The Zip Attachments plugin for WordPress is vulnerable to unauthorized loss of data due to a... Moderate Unreviewed
CVE-2025-11692 was published Oct 15, 2025
The Find And Replace content for WordPress plugin for WordPress is vulnerable to unauthorized... High Unreviewed
CVE-2025-10313 was published Oct 15, 2025
NVIDIA Jetson Linux contains a vulnerability in UEFI, where improper authentication may allow a... High Unreviewed
CVE-2025-33182 was published Oct 14, 2025
The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-10732 was published Oct 14, 2025
The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to authorization bypass... High Unreviewed
CVE-2025-8593 was published Oct 11, 2025
The Newsup theme for WordPress is vulnerable to unauthorized plugin installation due to a missing... Moderate Unreviewed
CVE-2025-8682 was published Oct 11, 2025
The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for... Moderate Unreviewed
CVE-2025-11380 was published Oct 11, 2025
Missing Authorization vulnerability in Drupal Facets allows Forceful Browsing.This issue affects... Moderate Unreviewed
CVE-2025-9549 was published Oct 11, 2025
A security vulnerability has been detected in PowerJob up to 5.1.2. This vulnerability affects... Moderate Unreviewed
CVE-2025-11581 was published Oct 10, 2025
A weakness has been identified in PowerJob up to 5.1.2. This affects the function list of the... Moderate Unreviewed
CVE-2025-11580 was published Oct 10, 2025
Melis Platform CMS Unauthenticated Admin Account Creation Critical
CVE-2025-10352 was published for melisplatform/melis-core (Composer) Oct 8, 2025
ivansmc00
Credited to ivansmc00
A vulnerability has been found in JhumanJ OpnForm up to 1.9.3. This vulnerability affects unknown... Moderate Unreviewed
CVE-2025-11438 was published Oct 8, 2025
A vulnerability was found in JhumanJ OpnForm up to 1.9.3. This issue affects some unknown... Moderate Unreviewed
CVE-2025-11439 was published Oct 8, 2025
The Cost Calculator Builder plugin for WordPress is vulnerable to unauthorizedmodification of... High Unreviewed
CVE-2025-9243 was published Oct 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database