GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,960
Composer 4,279
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,421
Pub 12
RubyGems 891
Rust 873
Swift 36

Unreviewed advisories

All unreviewed 238,911

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,040 advisories

Filter by severity

Sort by

Least recently updated

The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &... Moderate Unreviewed

CVE-2024-12190 was published Dec 25, 2024

The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is... Moderate Unreviewed

CVE-2024-12413 was published Dec 25, 2024

The ELEX WooCommerce Dynamic Pricing and Discounts plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12266 was published Dec 24, 2024

The WC Price History for Omnibus plugin for WordPress is vulnerable to unauthorized access due to... Moderate Unreviewed

CVE-2024-12617 was published Dec 24, 2024

The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12210 was published Dec 24, 2024

The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid, Carousel and... Moderate Unreviewed

CVE-2024-11852 was published Dec 22, 2024

The WP BASE Booking of Appointments, Services and Events plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12558 was published Dec 21, 2024

In JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify... Moderate Unreviewed

CVE-2024-56349 was published Dec 20, 2024

The File Manager Pro – Filester plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2024-12331 was published Dec 19, 2024

Missing Authorization vulnerability in Web Chunky Order Delivery & Pickup Location Date Time... Moderate Unreviewed

CVE-2024-55997 was published Dec 18, 2024

Missing Authorization vulnerability in Yudiz Solutions Ltd. WP Menu Image allows Exploiting... Moderate Unreviewed

CVE-2024-52485 was published Dec 18, 2024

The Travel Booking WordPress Theme theme for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2024-11926 was published Dec 18, 2024

The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is... Moderate Unreviewed

CVE-2024-12596 was published Dec 18, 2024

Missing Authorization vulnerability in David Cramer Caldera SMTP Mailer.This issue affects... Moderate Unreviewed

CVE-2024-56003 was published Dec 16, 2024

Missing Authorization vulnerability in Marco Giannini XML Multilanguage Sitemap Generator.This... Moderate Unreviewed

CVE-2024-55999 was published Dec 16, 2024

Missing Authorization vulnerability in spreadr Spreadr Woocommerce allows Accessing Functionality... Moderate Unreviewed

CVE-2024-56009 was published Dec 16, 2024

Missing Authorization vulnerability in Ksher Ksher allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2024-56001 was published Dec 16, 2024

Missing Authorization vulnerability in dusthazard Popup Surveys & Polls for WordPress (Mare.io)... Moderate Unreviewed

CVE-2024-55998 was published Dec 16, 2024

Missing Authorization vulnerability in Open Tools WooCommerce Basic Ordernumbers allows... Moderate Unreviewed

CVE-2024-55992 was published Dec 16, 2024

Missing Authorization vulnerability in Dreamfox Dreamfox Media Payment gateway per Product for... Moderate Unreviewed

CVE-2024-55996 was published Dec 16, 2024

Missing Authorization vulnerability in 搜狐畅言畅言评论系统 allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2024-55994 was published Dec 16, 2024

Missing Authorization vulnerability in Ram Segev Leader allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2024-56007 was published Dec 16, 2024

Missing Authorization vulnerability in Alex W Fowler Easy Site Importer allows Exploiting... Moderate Unreviewed

CVE-2024-56004 was published Dec 16, 2024

Missing Authorization vulnerability in PickPlugins Job Board Manager allows Exploiting... Moderate Unreviewed

CVE-2024-55993 was published Dec 16, 2024

Missing Authorization vulnerability in Jozoor Arabic Webfonts allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2024-54402 was published Dec 16, 2024

Previous 1 2 3 4 5 … 81 82 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,040 advisories