GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+
880 advisories
Filter by severity
Missing Authorization vulnerability in Masteriyo Masteriyo - LMS allows Accessing Functionality...
High
Unreviewed
CVE-2024-43158
was published
Nov 1, 2024
Missing Authorization vulnerability in MetaBox.Io Meta Box – WordPress Custom Fields Framework...
High
Unreviewed
CVE-2024-43235
was published
Nov 1, 2024
Missing Authorization vulnerability in MagePeople Team WpTravelly allows Accessing Functionality...
High
Unreviewed
CVE-2024-43212
was published
Nov 1, 2024
Missing Authorization vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows Accessing...
High
Unreviewed
CVE-2024-38744
was published
Nov 1, 2024
Missing Authorization vulnerability in spider-themes EazyDocs allows Exploiting Incorrectly...
High
Unreviewed
CVE-2024-38721
was published
Nov 1, 2024
Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing...
High
Unreviewed
CVE-2024-38726
was published
Nov 1, 2024
Missing Authorization vulnerability in YMC Filter & Grids allows Accessing Functionality Not...
High
Unreviewed
CVE-2024-39664
was published
Nov 1, 2024
Missing Authorization vulnerability in WPWeb Elite WooCommerce PDF Vouchers allows Accessing...
High
Unreviewed
CVE-2024-39650
was published
Nov 1, 2024
Missing Authorization vulnerability in WofficeIO Woffice Core allows Accessing Functionality Not...
High
Unreviewed
CVE-2024-37470
was published
Nov 1, 2024
Missing Authorization vulnerability in Hercules Design Hercules Core allows Exploiting...
High
Unreviewed
CVE-2024-37232
was published
Nov 1, 2024
Missing Authorization vulnerability in WishList Products WishList Member X allows Exploiting...
High
Unreviewed
CVE-2024-37106
was published
Nov 1, 2024
Access Control vulnerability in StylemixThemes MasterStudy LMS allows .
This issue affects...
High
Unreviewed
CVE-2024-37094
was published
Nov 1, 2024
The Masteriyo LMS – eLearning and Online Course Builder for WordPress plugin for WordPress is...
High
Unreviewed
CVE-2024-10008
was published
Oct 29, 2024
This issue was addressed through improved state management. This issue is fixed in macOS Sequoia...
High
Unreviewed
CVE-2024-44208
was published
Oct 28, 2024
A path deletion vulnerability was addressed by preventing vulnerable code from running with...
High
Unreviewed
CVE-2024-44156
was published
Oct 28, 2024
The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is...
High
Unreviewed
CVE-2024-10402
was published
Oct 26, 2024
Missing Authorization vulnerability in ReneeCussack 3D Work In Progress allows Exploiting...
High
Unreviewed
CVE-2024-49657
was published
Oct 23, 2024
In Minecraft mod "Command Block IDE" up to and including version 0.4.9, a missing authorization ...
High
Unreviewed
CVE-2024-48645
was published
Oct 21, 2024
The WP Easy Post Types plugin for WordPress is vulnerable to unauthorized access, modification,...
High
Unreviewed
CVE-2024-10078
was published
Oct 18, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
High
Unreviewed
CVE-2023-7294
was published
Oct 16, 2024
The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to authorization...
High
Unreviewed
CVE-2020-36840
was published
Oct 16, 2024
The Download Monitor plugin for WordPress is vulnerable to authorization bypass due to a missing...
High
Unreviewed
CVE-2022-4972
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
High
Unreviewed
CVE-2023-7291
was published
Oct 16, 2024
The ShopWP plugin for WordPress is vulnerable to authorization bypass due to a missing capability...
High
Unreviewed
CVE-2019-25214
was published
Oct 16, 2024
The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file...
High
Unreviewed
CVE-2019-25215
was published
Oct 16, 2024
ProTip!
Advisories are also available from the
GraphQL API