Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,597 advisories

Loading
The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-9189 was published Sep 28, 2024
In Eclipse Dataspace Components versions 0.1.3 to 0.9.0, the Connector component filters which... Moderate Unreviewed
CVE-2024-9202 was published Sep 27, 2024
The Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress... Moderate Unreviewed
CVE-2024-8771 was published Sep 26, 2024
The Sight – Professional Image Gallery and Portfolio plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-9025 was published Sep 26, 2024
Missing Authorization vulnerability in Stuart Wilson Joy Of Text Lite.This issue affects Joy Of... Moderate Unreviewed
CVE-2024-47337 was published Sep 26, 2024
Missing Authorization vulnerability in Supsystic Slider by Supsystic, Supsystic Social Share... Moderate Unreviewed
CVE-2024-47330 was published Sep 26, 2024
The Download Monitor plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2024-8552 was published Sep 26, 2024
The Revolut Gateway for WooCommerce plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-8678 was published Sep 25, 2024
The myCred – Loyalty Points and Rewards plugin for WordPress and WooCommerce – Give Points, Ranks... Moderate Unreviewed
CVE-2024-8658 was published Sep 25, 2024
The Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular... Moderate Unreviewed
CVE-2024-6590 was published Sep 25, 2024
The WP Easy Gallery – WordPress Gallery Plugin plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-8437 was published Sep 25, 2024
The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-7491 was published Sep 25, 2024
The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to privilege escalation in... High Unreviewed
CVE-2024-8349 was published Sep 25, 2024
The Easy Mega Menu Plugin for WordPress – ThemeHunk plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-8434 was published Sep 25, 2024
The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to user group add due to a... Low Unreviewed
CVE-2024-8350 was published Sep 25, 2024
The Appointment & Event Booking Calendar Plugin – Webba Booking plugin for WordPress is... Moderate Unreviewed
CVE-2024-8432 was published Sep 24, 2024
The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is... Moderate Unreviewed
CVE-2024-7888 was published Sep 13, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 11.2 before 17.1.7... Moderate Unreviewed
CVE-2024-4660 was published Sep 12, 2024
The HTML5 Video Player – mp4 Video Player Plugin and Block plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-7721 was published Sep 11, 2024
The HTML5 Video Player – mp4 Video Player Plugin and Block plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-7727 was published Sep 11, 2024
In onCreate of SettingsHomepageActivity.java, there is a possible way to access the Settings app... High Unreviewed
CVE-2024-40652 was published Sep 11, 2024
XWiki Platform document history including authors of any page exposed to unauthorized actors Moderate
CVE-2024-45591 was published for org.xwiki.platform:xwiki-platform-rest-server (Maven) Sep 10, 2024
Xiqinger
The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-8369 was published Sep 10, 2024
An authenticated attacker with high privilege can use functions of SLCM transactions to which... Low Unreviewed
CVE-2024-45284 was published Sep 10, 2024
Due to missing authorization check in SAP for Oil & Gas (Transportation and Distribution), an... Moderate Unreviewed
CVE-2024-44112 was published Sep 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database