GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,691

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

24,960 advisories

Filter by severity

Sort by

Least recently updated

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-22747 was published Jan 15, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-22749 was published Jan 15, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-22744 was published Jan 15, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-22748 was published Jan 15, 2025

The PDF for WPForms + Drag and Drop Template Builder plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2024-12593 was published Jan 15, 2025

Inappropriate implementation in Compositing in Google Chrome prior to 132.0.6834.83 allowed a... Moderate Unreviewed

CVE-2025-0448 was published Jan 15, 2025

The Image Gallery – Responsive Photo Gallery plugin for WordPress is vulnerable to Reflected... Moderate Unreviewed

CVE-2024-12403 was published Jan 15, 2025

The WP Smart TV plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2024-12818 was published Jan 15, 2025

The Contact Form 7 Redirect & Thank You Page plugin for WordPress is vulnerable to Reflected... Moderate Unreviewed

CVE-2024-12423 was published Jan 15, 2025

A improper neutralization of input during web page generation ('cross-site scripting') in... Moderate Unreviewed

CVE-2024-35280 was published Jan 15, 2025

Inappropriate implementation in Fenced Frames in Google Chrome prior to 132.0.6834.83 allowed a... Moderate Unreviewed

CVE-2025-0441 was published Jan 15, 2025

A stored Cross-site Scripting (XSS) vulnerability exists in the MGate 5121/5122/5123 Series... Moderate Unreviewed

CVE-2025-0193 was published Jan 15, 2025

The Event Registration Calendar By vcita plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-11870 was published Jan 15, 2025

The Car Demon plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2024-13334 was published Jan 15, 2025

The ViewMedica 9 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2024-13394 was published Jan 15, 2025

A stored cross-site scripting (XSS) vulnerability in the prf_table_content component of Linksys... Moderate Unreviewed

CVE-2025-22997 was published Jan 15, 2025

A stored cross-site scripting (XSS) vulnerability in the spf_table_content component of Linksys... Moderate Unreviewed

CVE-2025-22996 was published Jan 15, 2025

The ip_mod_dns_key_form.cgi request in GestioIP v3.5.7 is vulnerable to Stored XSS. An attacker... Moderate Unreviewed

CVE-2024-50861 was published Jan 15, 2025

The ip_do_job request in GestioIP v3.5.7 is vulnerable to Cross-Site Scripting (XSS). It allows... Moderate Unreviewed

CVE-2024-50857 was published Jan 15, 2025

The ip_import_acl_csv request in GestioIP v3.5.7 is vulnerable to Reflected XSS. When a user... Moderate Unreviewed

CVE-2024-50859 was published Jan 15, 2025

Microsoft SharePoint Server Spoofing Vulnerability Moderate Unreviewed

CVE-2025-21393 was published Jan 14, 2025

A vulnerability was found in SourceCodester Task Reminder System 1.0. It has been declared as... Moderate Unreviewed

CVE-2025-0464 was published Jan 14, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2025-23080 was published Jan 14, 2025

A stored cross-site scripting (XSS) vulnerability in Arcadyan Meteor 2 CPE FG360 Firmware ETV2.10... Moderate Unreviewed

CVE-2024-53563 was published Jan 14, 2025

A vulnerability classified as problematic was found in Virtual Computer Vysual RH Solution 2024... Moderate Unreviewed

CVE-2025-0458 was published Jan 14, 2025

Previous 1 2 3 4 5 6 7 8 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

24,960 advisories