GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
778 advisories
Filter by severity
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
High
Unreviewed
CVE-2024-21215
was published
Oct 15, 2024
Vulnerability in the Oracle Service Bus product of Oracle Fusion Middleware (component: OSB Core...
High
Unreviewed
CVE-2024-21246
was published
Oct 15, 2024
The WP Easy Post Types plugin for WordPress is vulnerable to unauthorized access, modification,...
High
Unreviewed
CVE-2024-10078
was published
Oct 18, 2024
In Minecraft mod "Command Block IDE" up to and including version 0.4.9, a missing authorization ...
High
Unreviewed
CVE-2024-48645
was published
Oct 21, 2024
Missing Authorization vulnerability in ReneeCussack 3D Work In Progress allows Exploiting...
High
Unreviewed
CVE-2024-49657
was published
Oct 23, 2024
The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is...
High
Unreviewed
CVE-2024-10402
was published
Oct 26, 2024
The Masteriyo LMS – eLearning and Online Course Builder for WordPress plugin for WordPress is...
High
Unreviewed
CVE-2024-10008
was published
Oct 29, 2024
A logic bug in the code which disables kernel tracing for setuid programs meant that tracing was...
High
Unreviewed
CVE-2024-6760
was published
Aug 12, 2024
Pi-hole before 6 allows unauthenticated admin/api.php?setTempUnit= calls to change the...
High
Unreviewed
CVE-2024-44069
was published
Aug 19, 2024
This issue was addressed through improved state management. This issue is fixed in macOS Sequoia...
High
Unreviewed
CVE-2024-44208
was published
Oct 28, 2024
A path deletion vulnerability was addressed by preventing vulnerable code from running with...
High
Unreviewed
CVE-2024-44156
was published
Oct 28, 2024
Authentication vulnerability in the API for app pre-loading.
Impact: Successful exploitation of...
High
Unreviewed
CVE-2023-52541
was published
Apr 8, 2024
Access Control vulnerability in StylemixThemes MasterStudy LMS allows .
This issue affects...
High
Unreviewed
CVE-2024-37094
was published
Nov 1, 2024
Missing Authorization vulnerability in WishList Products WishList Member X allows Exploiting...
High
Unreviewed
CVE-2024-37106
was published
Nov 1, 2024
Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing...
High
Unreviewed
CVE-2024-38726
was published
Nov 1, 2024
Missing Authorization vulnerability in YMC Filter & Grids allows Accessing Functionality Not...
High
Unreviewed
CVE-2024-39664
was published
Nov 1, 2024
Missing Authorization vulnerability in spider-themes EazyDocs allows Exploiting Incorrectly...
High
Unreviewed
CVE-2024-38721
was published
Nov 1, 2024
Missing Authorization vulnerability in WPWeb Elite WooCommerce PDF Vouchers allows Accessing...
High
Unreviewed
CVE-2024-39650
was published
Nov 1, 2024
Missing Authorization vulnerability in Hercules Design Hercules Core allows Exploiting...
High
Unreviewed
CVE-2024-37232
was published
Nov 1, 2024
Missing Authorization vulnerability in WofficeIO Woffice Core allows Accessing Functionality Not...
High
Unreviewed
CVE-2024-37470
was published
Nov 1, 2024
Missing Authorization vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows Accessing...
High
Unreviewed
CVE-2024-38744
was published
Nov 1, 2024
Missing Authorization vulnerability in MagePeople Team WpTravelly allows Accessing Functionality...
High
Unreviewed
CVE-2024-43212
was published
Nov 1, 2024
Missing Authorization vulnerability in MetaBox.Io Meta Box – WordPress Custom Fields Framework...
High
Unreviewed
CVE-2024-43235
was published
Nov 1, 2024
Missing Authorization vulnerability in Masteriyo Masteriyo - LMS allows Accessing Functionality...
High
Unreviewed
CVE-2024-43158
was published
Nov 1, 2024
Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting...
High
Unreviewed
CVE-2024-47314
was published
Nov 1, 2024
ProTip!
Advisories are also available from the
GraphQL API