GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,947
Composer 4,273
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,235
npm 3,740
NuGet 668
pip 3,417
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,573

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,404 advisories

Filter by severity

Sort by

Least recently updated

The WooCommerce Point of Sale plugin for WordPress is vulnerable to privilege escalation in all... Critical Unreviewed

CVE-2024-11281 was published Dec 25, 2024

The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &... Moderate Unreviewed

CVE-2024-12190 was published Dec 25, 2024

The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is... Moderate Unreviewed

CVE-2024-12413 was published Dec 25, 2024

The PlugVersions – Easily rollback to previous versions of your plugins plugin for WordPress is... High Unreviewed

CVE-2024-12881 was published Dec 24, 2024

The ELEX WooCommerce Dynamic Pricing and Discounts plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12266 was published Dec 24, 2024

The WC Price History for Omnibus plugin for WordPress is vulnerable to unauthorized access due to... Moderate Unreviewed

CVE-2024-12617 was published Dec 24, 2024

The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12210 was published Dec 24, 2024

The Custom Login Page Styler – Login Protected Private Site , Change wp-admin login url ,... High Unreviewed

CVE-2024-12594 was published Dec 24, 2024

The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid, Carousel and... Moderate Unreviewed

CVE-2024-11852 was published Dec 22, 2024

The WP BASE Booking of Appointments, Services and Events plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12558 was published Dec 21, 2024

In JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify... Moderate Unreviewed

CVE-2024-56349 was published Dec 20, 2024

The File Manager Pro – Filester plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2024-12331 was published Dec 19, 2024

Missing Authorization vulnerability in theDotstore Advance Menu Manager.This issue affects... High Unreviewed

CVE-2024-54381 was published Dec 18, 2024

Missing Authorization vulnerability in VibeThemes WPLMS allows Accessing Functionality Not... High Unreviewed

CVE-2024-56048 was published Dec 18, 2024

Missing Authorization vulnerability in spreadr Spreadr Woocommerce allows Accessing Functionality... High Unreviewed

CVE-2024-56008 was published Dec 18, 2024

Missing Authorization vulnerability in Web Chunky Order Delivery & Pickup Location Date Time... Moderate Unreviewed

CVE-2024-55997 was published Dec 18, 2024

Missing Authorization vulnerability in Yudiz Solutions Ltd. WP Menu Image allows Exploiting... Moderate Unreviewed

CVE-2024-52485 was published Dec 18, 2024

The Travel Booking WordPress Theme theme for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2024-11926 was published Dec 18, 2024

The CRM WordPress Plugin – RepairBuddy plugin for WordPress is vulnerable to privilege escalation... High Unreviewed

CVE-2024-12259 was published Dec 18, 2024

The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is... Moderate Unreviewed

CVE-2024-12596 was published Dec 18, 2024

Missing Authorization vulnerability in Marco Giannini XML Multilanguage Sitemap Generator.This... Moderate Unreviewed

CVE-2024-55999 was published Dec 16, 2024

Missing Authorization vulnerability in David Cramer Caldera SMTP Mailer.This issue affects... Moderate Unreviewed

CVE-2024-56003 was published Dec 16, 2024

Missing Authorization vulnerability in spreadr Spreadr Woocommerce allows Accessing Functionality... Moderate Unreviewed

CVE-2024-56009 was published Dec 16, 2024

Missing Authorization vulnerability in Dreamfox Dreamfox Media Payment gateway per Product for... Moderate Unreviewed

CVE-2024-55996 was published Dec 16, 2024

Missing Authorization vulnerability in Open Tools WooCommerce Basic Ordernumbers allows... Moderate Unreviewed

CVE-2024-55992 was published Dec 16, 2024

Previous 1 2 3 4 5 … 136 137 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,404 advisories