GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,385

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,528 advisories

Filter by severity

Sort by

Least recently updated

The Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX plugin for WordPress is... High Unreviewed

CVE-2024-10728 was published Nov 16, 2024

The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed

CVE-2024-10614 was published Nov 16, 2024

The WP Log Viewer plugin for WordPress is vulnerable to unauthorized use of functionality due to... Moderate Unreviewed

CVE-2024-11085 was published Nov 16, 2024

The WP Chat App plugin for WordPress is vulnerable to unauthorized plugin installation due to a... Moderate Unreviewed

CVE-2024-10533 was published Nov 16, 2024

The Simple Local Avatars plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed

CVE-2024-10786 was published Nov 16, 2024

The Popup Box – Create Countdown, Coupon, Video, Contact Form Popups plugin for WordPress is... Moderate Unreviewed

CVE-2024-10861 was published Nov 16, 2024

The Music Player for Elementor – Audio Player & Podcast Player plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-10582 was published Nov 15, 2024

The Tutor LMS Elementor Addons plugin for WordPress is vulnerable to unauthorized plugin... Moderate Unreviewed

CVE-2024-10897 was published Nov 15, 2024

Missing Authorization vulnerability in Medma Technologies Matix Popup Builder allows Privilege... Critical Unreviewed

CVE-2024-52382 was published Nov 14, 2024

Missing Authorization vulnerability in KCT Ai Auto Tool Content Writing Assistant (Gemini Writer,... High Unreviewed

CVE-2024-52383 was published Nov 14, 2024

In getInstalledAccessibilityPreferences of AccessibilitySettings.java, there is a possible way to... High Unreviewed

CVE-2024-43087 was published Nov 13, 2024

In multiple locations, there is a possible cross-user image read due to a missing permission... Moderate Unreviewed

CVE-2024-43090 was published Nov 13, 2024

In multiple functions in AppInfoBase.java, there is a possible way to manipulate app permission... High Unreviewed

CVE-2024-43088 was published Nov 13, 2024

In multiple locations, there is a possible permissions bypass due to a missing null check. This... High Unreviewed

CVE-2024-34719 was published Nov 13, 2024

A vulnerability was found in VIWIS LMS 9.11. It has been classified as critical. Affected is an... Moderate Unreviewed

CVE-2024-8001 was published Nov 13, 2024

The Hash Elements plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed

CVE-2024-10802 was published Nov 13, 2024

The WordPress User Extra Fields plugin for WordPress is vulnerable to privilege escalation due to... High Unreviewed

CVE-2024-10800 was published Nov 13, 2024

CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when... Critical Unreviewed

CVE-2024-10575 was published Nov 13, 2024

The Hide Links plugin for WordPress is vulnerable to unauthorized shortcode execution due to... Moderate Unreviewed

CVE-2024-9578 was published Nov 13, 2024

The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-10529 was published Nov 13, 2024

The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-10530 was published Nov 13, 2024

The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-10531 was published Nov 13, 2024

The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed

CVE-2024-10854 was published Nov 13, 2024

The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed

CVE-2024-10853 was published Nov 13, 2024

The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized access of data... Moderate Unreviewed

CVE-2024-10852 was published Nov 13, 2024

Previous 1 2 3 4 5 … 101 102 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,528 advisories