GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,472
Erlang
33
GitHub Actions
24
Go
2,195
Maven
5,000+
npm
3,841
NuGet
696
pip
3,632
Pub
12
RubyGems
911
Rust
910
Swift
38
Unreviewed advisories
All unreviewed
5,000+
893 advisories
Filter by severity
In updateInternal of MediaProvider.java , there is a possible access of another app's files due...
High
Unreviewed
CVE-2024-43089
was published
Nov 13, 2024
In getInstalledAccessibilityPreferences of AccessibilitySettings.java, there is a possible way to...
High
Unreviewed
CVE-2024-43087
was published
Nov 13, 2024
In multiple functions in AppInfoBase.java, there is a possible way to manipulate app permission...
High
Unreviewed
CVE-2024-43088
was published
Nov 13, 2024
In multiple locations, there is a possible permissions bypass due to a missing null check. This...
High
Unreviewed
CVE-2024-34719
was published
Nov 13, 2024
In mayAdminGrantPermission of AdminRestrictedPermissionsUtils.java, there is a possible way to...
High
Unreviewed
CVE-2024-40661
was published
Nov 13, 2024
In DevmemIntChangeSparse2 of devicemem_server.c, there is a possible way to achieve arbitrary...
High
Unreviewed
CVE-2024-40671
was published
Nov 13, 2024
The WordPress User Extra Fields plugin for WordPress is vulnerable to privilege escalation due to...
High
Unreviewed
CVE-2024-10800
was published
Nov 13, 2024
The GPX Viewer plugin for WordPress is vulnerable to arbitrary file creation due to a missing...
High
Unreviewed
CVE-2024-10629
was published
Nov 13, 2024
The Top Store theme for WordPress is vulnerable to unauthorized arbitrary plugin installation due...
High
Unreviewed
CVE-2024-10673
was published
Nov 9, 2024
The Th Shop Mania theme for WordPress is vulnerable to unauthorized arbitrary plugin installation...
High
Unreviewed
CVE-2024-10674
was published
Nov 9, 2024
Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting...
High
Unreviewed
CVE-2024-47314
was published
Nov 1, 2024
Missing Authorization vulnerability in Geek Code Lab Login As Users allows Exploiting Incorrectly...
High
Unreviewed
CVE-2024-43982
was published
Nov 1, 2024
Missing Authorization vulnerability in MetaBox.Io Meta Box – WordPress Custom Fields Framework...
High
Unreviewed
CVE-2024-43235
was published
Nov 1, 2024
Missing Authorization vulnerability in MagePeople Team WpTravelly allows Accessing Functionality...
High
Unreviewed
CVE-2024-43212
was published
Nov 1, 2024
Missing Authorization vulnerability in Masteriyo Masteriyo - LMS allows Accessing Functionality...
High
Unreviewed
CVE-2024-43158
was published
Nov 1, 2024
Missing Authorization vulnerability in spider-themes EazyDocs allows Exploiting Incorrectly...
High
Unreviewed
CVE-2024-38721
was published
Nov 1, 2024
Missing Authorization vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows Accessing...
High
Unreviewed
CVE-2024-38744
was published
Nov 1, 2024
Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing...
High
Unreviewed
CVE-2024-38726
was published
Nov 1, 2024
Missing Authorization vulnerability in WPWeb Elite WooCommerce PDF Vouchers allows Accessing...
High
Unreviewed
CVE-2024-39650
was published
Nov 1, 2024
Missing Authorization vulnerability in YMC Filter & Grids allows Accessing Functionality Not...
High
Unreviewed
CVE-2024-39664
was published
Nov 1, 2024
Missing Authorization vulnerability in WofficeIO Woffice Core allows Accessing Functionality Not...
High
Unreviewed
CVE-2024-37470
was published
Nov 1, 2024
Missing Authorization vulnerability in WishList Products WishList Member X allows Exploiting...
High
Unreviewed
CVE-2024-37106
was published
Nov 1, 2024
Missing Authorization vulnerability in Hercules Design Hercules Core allows Exploiting...
High
Unreviewed
CVE-2024-37232
was published
Nov 1, 2024
Access Control vulnerability in StylemixThemes MasterStudy LMS allows .
This issue affects...
High
Unreviewed
CVE-2024-37094
was published
Nov 1, 2024
The Masteriyo LMS – eLearning and Online Course Builder for WordPress plugin for WordPress is...
High
Unreviewed
CVE-2024-10008
was published
Oct 29, 2024
ProTip!
Advisories are also available from the
GraphQL API