GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,597 advisories
Filter by severity
The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-9189
was published
Sep 28, 2024
In Eclipse Dataspace Components versions 0.1.3 to 0.9.0, the Connector component filters which...
Moderate
Unreviewed
CVE-2024-9202
was published
Sep 27, 2024
The Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress...
Moderate
Unreviewed
CVE-2024-8771
was published
Sep 26, 2024
The Sight – Professional Image Gallery and Portfolio plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-9025
was published
Sep 26, 2024
Missing Authorization vulnerability in Stuart Wilson Joy Of Text Lite.This issue affects Joy Of...
Moderate
Unreviewed
CVE-2024-47337
was published
Sep 26, 2024
Missing Authorization vulnerability in Supsystic Slider by Supsystic, Supsystic Social Share...
Moderate
Unreviewed
CVE-2024-47330
was published
Sep 26, 2024
The Download Monitor plugin for WordPress is vulnerable to unauthorized modification of data due...
Moderate
Unreviewed
CVE-2024-8552
was published
Sep 26, 2024
The Revolut Gateway for WooCommerce plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-8678
was published
Sep 25, 2024
The myCred – Loyalty Points and Rewards plugin for WordPress and WooCommerce – Give Points, Ranks...
Moderate
Unreviewed
CVE-2024-8658
was published
Sep 25, 2024
The Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular...
Moderate
Unreviewed
CVE-2024-6590
was published
Sep 25, 2024
The WP Easy Gallery – WordPress Gallery Plugin plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-8437
was published
Sep 25, 2024
The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-7491
was published
Sep 25, 2024
The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to privilege escalation in...
High
Unreviewed
CVE-2024-8349
was published
Sep 25, 2024
The Easy Mega Menu Plugin for WordPress – ThemeHunk plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-8434
was published
Sep 25, 2024
The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to user group add due to a...
Low
Unreviewed
CVE-2024-8350
was published
Sep 25, 2024
The Appointment & Event Booking Calendar Plugin – Webba Booking plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-8432
was published
Sep 24, 2024
The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-7888
was published
Sep 13, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 11.2 before 17.1.7...
Moderate
Unreviewed
CVE-2024-4660
was published
Sep 12, 2024
The HTML5 Video Player – mp4 Video Player Plugin and Block plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-7721
was published
Sep 11, 2024
The HTML5 Video Player – mp4 Video Player Plugin and Block plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-7727
was published
Sep 11, 2024
In onCreate of SettingsHomepageActivity.java, there is a possible way to access the Settings app...
High
Unreviewed
CVE-2024-40652
was published
Sep 11, 2024
XWiki Platform document history including authors of any page exposed to unauthorized actors
Moderate
CVE-2024-45591
was published
for
org.xwiki.platform:xwiki-platform-rest-server
(Maven)
Sep 10, 2024
The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-8369
was published
Sep 10, 2024
An authenticated attacker with high privilege can use functions of SLCM transactions to which...
Low
Unreviewed
CVE-2024-45284
was published
Sep 10, 2024
Due to missing authorization check in SAP for Oil & Gas (Transportation and Distribution), an...
Moderate
Unreviewed
CVE-2024-44112
was published
Sep 10, 2024
ProTip!
Advisories are also available from the
GraphQL API