GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,960
Composer 4,279
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,421
Pub 12
RubyGems 891
Rust 873
Swift 36

Unreviewed advisories

All unreviewed 238,857

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

111,051 advisories

Filter by severity

Sort by

Least recently updated

The DN Shipping by Weight for WooCommerce WordPress plugin before 1.2 does not have CSRF check in... Moderate Unreviewed

CVE-2024-11842 was published Dec 27, 2024

A vulnerability, which was classified as critical, was found in DrayTek Vigor2960 and Vigor300B 1... Moderate Unreviewed

CVE-2024-12987 was published Dec 27, 2024

A vulnerability was found in Beijing Longda Jushang Technology DBShop商城系统 3.3 Release 231225. It... Moderate Unreviewed

CVE-2024-12991 was published Dec 27, 2024

The wp-publications WordPress plugin through 1.2 does not escape filenames before outputting them... Moderate Unreviewed

CVE-2024-11605 was published Dec 27, 2024

The GiveWP WordPress plugin before 3.19.0 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-11921 was published Dec 27, 2024

The float block WordPress plugin through 1.7 does not sanitise and escape some of its settings,... Moderate Unreviewed

CVE-2024-11645 was published Dec 27, 2024

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia... Moderate Unreviewed

CVE-2024-44223 was published Dec 20, 2024

The WP-SVG WordPress plugin through 0.9 does not validate and escape some of its shortcode... Moderate Unreviewed

CVE-2024-11644 was published Dec 27, 2024

The ImageRecycle pdf & image compression plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-0984 was published Feb 29, 2024

Cross Site Scripting (XSS) vulnerability in the Registration page of the admin panel in... Moderate Unreviewed

CVE-2020-24723 was published May 24, 2022

The ImageRecycle pdf & image compression plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-1091 was published Feb 29, 2024

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-0438 was published Feb 29, 2024

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-0838 was published Feb 29, 2024

A vulnerability was found in ruifang-tech Rebuild 3.8.6. It has been classified as problematic.... Moderate Unreviewed

CVE-2024-12990 was published Dec 27, 2024

A vulnerability has been found in Netgear R6900P and R7000P 1.3.3.154 and classified as critical.... Moderate Unreviewed

CVE-2024-12988 was published Dec 27, 2024

A vulnerability was found in WISI Tangram GT31 up to 20241214 and classified as problematic.... Moderate Unreviewed

CVE-2024-12989 was published Dec 27, 2024

A vulnerability, which was classified as critical, has been found in DrayTek Vigor2960 and... Moderate Unreviewed

CVE-2024-12986 was published Dec 27, 2024

The ImageRecycle pdf & image compression plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-1090 was published Feb 29, 2024

The ImageRecycle pdf & image compression plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-0983 was published Feb 29, 2024

Some Honor products are affected by information leak vulnerability, successful exploitation could... Moderate Unreviewed

CVE-2024-47155 was published Dec 26, 2024

A vulnerability classified as problematic has been found in Amcrest IP2M-841B, IP2M-841W, IPC... Moderate Unreviewed

CVE-2024-12984 was published Dec 27, 2024

A vulnerability classified as critical was found in Overtek OT-E801G OTE801G65.1.1.0. This... Moderate Unreviewed

CVE-2024-12985 was published Dec 27, 2024

A vulnerability was found in code-projects Simple Admin Panel 1.0 and classified as problematic.... Moderate Unreviewed

CVE-2024-12930 was published Dec 26, 2024

A vulnerability has been found in code-projects Student Management System 1.0.00 and classified... Moderate Unreviewed

CVE-2024-12929 was published Dec 26, 2024

The GTPayment Donations WordPress plugin through 1.0.0 does not have CSRF check in some places,... Moderate Unreviewed

CVE-2024-11607 was published Dec 21, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

111,051 advisories