GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,031
Composer 4,303
Erlang 31
GitHub Actions 21
Go 2,072
Maven 5,246
npm 3,744
NuGet 669
pip 3,430
Pub 12
RubyGems 892
Rust 880
Swift 36

Unreviewed advisories

All unreviewed 240,693

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

240,693 advisories

Filter by severity

Sort by

Least recently updated

The W3 Total Cache plugin for WordPress is vulnerable to Information Exposure in all versions up... Moderate Unreviewed

CVE-2024-12008 was published Jan 14, 2025

The W3 Total Cache plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed

CVE-2024-12006 was published Jan 14, 2025

The W3 Total Cache plugin for WordPress is vulnerable to unauthorized access of data due to a... High Unreviewed

CVE-2024-12365 was published Jan 14, 2025

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2025-0393 was published Jan 14, 2025

The WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg plugin... High Unreviewed

CVE-2025-0394 was published Jan 14, 2025

The HTML5 Video Player – mp4 Video Player Plugin and Block plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13156 was published Jan 14, 2025

The Smart Agenda – Prise de rendez-vous en ligne plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed

CVE-2024-13348 was published Jan 14, 2025

The WP Booking Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-13323 was published Jan 14, 2025

SAP BusinessObjects Business Intelligence Platform allows an unauthenticated attacker to perform... High Unreviewed

CVE-2025-0061 was published Jan 14, 2025

Due to a missing authorization check on service endpoints in the SAP NetWeaver Application Server... Moderate Unreviewed

CVE-2025-0067 was published Jan 14, 2025

Veeam Backup for Microsoft Azure is vulnerable to Server-Side Request Forgery (SSRF). This may... High Unreviewed

CVE-2025-23082 was published Jan 14, 2025

SAP NetWeaver Application Server for ABAP and ABAP Platform allows an authenticated attacker to... Critical Unreviewed

CVE-2025-0070 was published Jan 14, 2025

SAP NetWeaver AS ABAP and ABAP Platform does not check for authorization when a user executes... High Unreviewed

CVE-2025-0063 was published Jan 14, 2025

Under certain conditions SAP NetWeaver AS for ABAP and ABAP Platform (Internet Communication... Critical Unreviewed

CVE-2025-0066 was published Jan 14, 2025

Due to DLL injection vulnerability in SAPSetup, an attacker with either local user privileges or... High Unreviewed

CVE-2025-0069 was published Jan 14, 2025

An improper privilege management vulnerability in the web management interface of the Zyxel... High Unreviewed

CVE-2024-12398 was published Jan 14, 2025

An obsolete functionality in SAP NetWeaver Application Server ABAP did not perform necessary... Moderate Unreviewed

CVE-2025-0068 was published Jan 14, 2025

An issue in the exp_copy component of MonetDB Server v11.49.1 allows attackers to cause a Denial... Unknown Unreviewed

CVE-2024-57634 was published Jan 14, 2025

An issue in the dc_add_int component of openlink virtuoso-opensource v7.2.11 allows attackers to... Unknown Unreviewed

CVE-2024-57640 was published Jan 14, 2025

An issue in the itc_hash_compare component of openlink virtuoso-opensource v7.2.11 allows... Unknown Unreviewed

CVE-2024-57644 was published Jan 14, 2025

An issue in the qi_inst_state_free component of openlink virtuoso-opensource v7.2.11 allows... Unknown Unreviewed

CVE-2024-57650 was published Jan 14, 2025

An issue in the dfe_unit_gb_dependant component of openlink virtuoso-opensource v7.2.11 allows... Unknown Unreviewed

CVE-2024-57637 was published Jan 14, 2025

An issue in the sqlo_df component of openlink virtuoso-opensource v7.2.11 allows attackers to... Unknown Unreviewed

CVE-2024-57661 was published Jan 14, 2025

An issue in the chash_array component of openlink virtuoso-opensource v7.2.11 allows attackers to... Unknown Unreviewed

CVE-2024-57635 was published Jan 14, 2025

An issue in the dfe_body_copy component of openlink virtuoso-opensource v7.2.11 allows attackers... Unknown Unreviewed

CVE-2024-57638 was published Jan 14, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

240,693 advisories