GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,616

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

38,271 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Zohocorp ManageEngine OpManager versions 128609 and below are vulnerable to Stored XSS... Moderate Unreviewed

CVE-2025-9227 was published Nov 11, 2025

Cross-Site Scripting (XSS) in NetScaler ADC and NetScaler Gateway when the appliance is... Moderate Unreviewed

CVE-2025-12101 was published Nov 11, 2025

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an... Moderate Unreviewed

CVE-2025-41105 was published Nov 11, 2025

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an... Moderate Unreviewed

CVE-2025-41104 was published Nov 11, 2025

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an... Moderate Unreviewed

CVE-2025-41103 was published Nov 11, 2025

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an... Moderate Unreviewed

CVE-2025-41106 was published Nov 11, 2025

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an... Moderate Unreviewed

CVE-2025-41102 was published Nov 11, 2025

Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored... High Unreviewed

CVE-2025-7633 was published Nov 11, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2025-11960 was published Nov 11, 2025

Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored... High Unreviewed

CVE-2025-7632 was published Nov 11, 2025

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an... Moderate Unreviewed

CVE-2025-41101 was published Nov 11, 2025

Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored... High Unreviewed

CVE-2025-7430 was published Nov 11, 2025

Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored... High Unreviewed

CVE-2025-7429 was published Nov 11, 2025

The RandomQuotr plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin... Moderate Unreviewed

CVE-2025-12632 was published Nov 11, 2025

The Coon Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-12662 was published Nov 11, 2025

The WP-Iconics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple... Moderate Unreviewed

CVE-2025-12671 was published Nov 11, 2025

The Flickr Show plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-12672 was published Nov 11, 2025

The Squirrels Auto Inventory plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-12631 was published Nov 11, 2025

The Jeba Cute forkit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-12663 was published Nov 11, 2025

The Nonaki – Drag and Drop Email Template builder and Newsletter plugin for WordPress is... Moderate Unreviewed

CVE-2025-12644 was published Nov 11, 2025

The GitHub Gist Shortcode Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-12667 was published Nov 11, 2025

The Ungapped Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-12652 was published Nov 11, 2025

The Share to Google Classroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-12711 was published Nov 11, 2025

The Preload Current Images plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-12658 was published Nov 11, 2025

The Live Photos on WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-12651 was published Nov 11, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

38,271 advisories