Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,830
Erlang
36
GitHub Actions
33
Go
2,450
Maven
5,000+
npm
4,070
NuGet
723
pip
3,868
Pub
12
RubyGems
943
Rust
1,010
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

32,623 advisories

Loading
A weakness has been identified in Scada-LTS 2.7.8.1. This vulnerability affects unknown code of... Moderate Unreviewed
CVE-2025-9144 was published Aug 19, 2025
A security flaw has been discovered in Scada-LTS 2.7.8.1. This affects an unknown part of the... Moderate Unreviewed
CVE-2025-9143 was published Aug 19, 2025
A vulnerability was found in Scada-LTS 2.7.8.1. Affected is an unknown function of the file... Moderate Unreviewed
CVE-2025-9138 was published Aug 19, 2025
A vulnerability has been found in Scada-LTS 2.7.8.1. This impacts an unknown function of the file... Moderate Unreviewed
CVE-2025-9137 was published Aug 19, 2025
A Stored cross-site scripting vulnerability in the Liferay Portal 7.4.3.120 through 7.4.3.132,... Moderate Unreviewed
CVE-2025-43740 was published Aug 19, 2025
The Contact Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-8783 was published Aug 19, 2025
The Nexter Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple... Moderate Unreviewed
CVE-2025-8567 was published Aug 19, 2025
The Flexible Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed
CVE-2025-8622 was published Aug 19, 2025
The WPC Smart Compare for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2025-7496 was published Aug 19, 2025
Sante PACS Server web portal is vulnerable to stored cross-site scripting. An attacker could... Moderate Unreviewed
CVE-2025-54862 was published Aug 19, 2025
Sante PACS Server is vulnerable to stored cross-site scripting. An attacker could inject... Moderate Unreviewed
CVE-2025-54759 was published Aug 19, 2025
A vulnerability was determined in Netis WF2419 1.2.29433. This vulnerability affects unknown code... Moderate Unreviewed
CVE-2025-9119 was published Aug 18, 2025
DIAEnergie - Stored Cross-site Scripting High Unreviewed
CVE-2025-57700 was published Aug 18, 2025
DIAEnergie - Reflected Cross-site Scripting Moderate Unreviewed
CVE-2025-57701 was published Aug 18, 2025
DIAEnergie - Reflected Cross-site Scripting Moderate Unreviewed
CVE-2025-57702 was published Aug 18, 2025
DIAEnergie - Reflected Cross-site Scripting Moderate Unreviewed
CVE-2025-57703 was published Aug 18, 2025
A vulnerability was determined in Portabilis i-Diario up to 1.5.0. This impacts an unknown... Moderate Unreviewed
CVE-2025-9107 was published Aug 18, 2025
A vulnerability was found in Portabilis i-Diario up to 1.5.0. This affects an unknown function of... Moderate Unreviewed
CVE-2025-9106 was published Aug 18, 2025
A vulnerability was detected in ZenCart 2.1.0. Affected by this vulnerability is an unknown... Moderate Unreviewed
CVE-2025-9103 was published Aug 18, 2025
A flaw has been found in Portabilis i-Diario up to 1.5.0. The affected element is an unknown... Moderate Unreviewed
CVE-2025-9104 was published Aug 18, 2025
A vulnerability has been found in Portabilis i-Diario up to 1.5.0. The impacted element is an... Moderate Unreviewed
CVE-2025-9105 was published Aug 18, 2025
A weakness has been identified in zhenfeng13 My-Blog up to 1.0.0. This issue affects some unknown... Moderate Unreviewed
CVE-2025-9101 was published Aug 18, 2025
The Soledad theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-8143 was published Aug 16, 2025
The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-8089 was published Aug 16, 2025
The Translate This gTranslate Shortcode plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2025-8719 was published Aug 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database