Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,969 advisories

Loading
Missing Authorization vulnerability in WP Quads Ads by WPQuads – Adsense Ads, Banner Ads, Popup... Moderate Unreviewed
CVE-2024-47317 was published Nov 1, 2024
Missing Authorization vulnerability in Magazine3 PWA for WP & AMP allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2024-47318 was published Nov 1, 2024
Missing Authorization vulnerability in Fahad Mahmood WP Datepicker allows Accessing Functionality... Moderate Unreviewed
CVE-2024-47321 was published Nov 1, 2024
Missing Authorization vulnerability in Popup Maker allows Accessing Functionality Not Properly... Moderate Unreviewed
CVE-2024-47358 was published Nov 1, 2024
Missing Authorization vulnerability in Depicter Slider and Popup by Averta Depicter Slider allows... Moderate Unreviewed
CVE-2024-47359 was published Nov 1, 2024
Missing Authorization vulnerability in WPVibes Elementor Addon Elements allows Exploiting... Moderate Unreviewed
CVE-2024-47361 was published Nov 1, 2024
Missing Authorization vulnerability in CubeWP CubeWP – All-in-One Dynamic Content Framework... Moderate Unreviewed
CVE-2024-48039 was published Nov 1, 2024
Missing Authorization vulnerability in ShortPixel – Convert WebP/AVIF & Optimize Images... Moderate Unreviewed
CVE-2024-48044 was published Nov 1, 2024
Missing Authorization vulnerability in Leevio Happy Addons for Elementor allows Exploiting... Moderate Unreviewed
CVE-2024-48045 was published Nov 1, 2024
Missing Authorization vulnerability in BearDev JoomSport allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2024-44031 was published Nov 1, 2024
Missing Authorization vulnerability in HelloAsso allows Exploiting Incorrectly Configured Access... Moderate Unreviewed
CVE-2024-44052 was published Nov 1, 2024
Missing Authorization vulnerability in AyeCode – WP Business Directory Plugins GeoDirectory... Moderate Unreviewed
CVE-2024-43981 was published Nov 1, 2024
Missing Authorization vulnerability in OnTheGoSystems WooCommerce Multilingual & Multicurrency... Moderate Unreviewed
CVE-2024-44006 was published Nov 1, 2024
Missing Authorization vulnerability in Prasad Kirpekar WP Free SSL – Free SSL Certificate for... Moderate Unreviewed
CVE-2024-44020 was published Nov 1, 2024
Missing Authorization vulnerability in Truepush allows Exploiting Incorrectly Configured Access... Moderate Unreviewed
CVE-2024-44021 was published Nov 1, 2024
Missing Authorization vulnerability in WPChill Strong Testimonials allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2024-47362 was published Nov 1, 2024
The Zotpress plugin for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed
CVE-2024-7429 was published Nov 5, 2024
The Tumult Hype Animations plugin for WordPress is vulnerable to unauthorized access of data due... Moderate Unreviewed
CVE-2024-10543 was published Nov 6, 2024
The Video Gallery for WooCommerce plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed
CVE-2024-10535 was published Nov 6, 2024
The EleForms – All In One Form Integration including DB for Elementor plugin for WordPress is... Moderate Unreviewed
CVE-2024-6626 was published Nov 6, 2024
Moodle's IDOR in badges allows deletion of arbitrary badges Moderate
CVE-2024-43431 was published for moodle/moodle (Composer) Nov 7, 2024
An authorization bypass vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed
CVE-2024-10824 was published Nov 8, 2024
The CE21 Suite plugin for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed
CVE-2024-10294 was published Nov 9, 2024
The Debug Tool plugin for WordPress is vulnerable to unauthorized access of data due to a missing... Moderate Unreviewed
CVE-2024-10588 was published Nov 9, 2024
Due to missing authorization check in SAP NetWeaver AS Java (System Landscape Directory) an... Moderate Unreviewed
CVE-2024-42372 was published Nov 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database