GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,040 advisories
Filter by severity
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &...
Moderate
Unreviewed
CVE-2024-12190
was published
Dec 25, 2024
The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-12413
was published
Dec 25, 2024
The ELEX WooCommerce Dynamic Pricing and Discounts plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-12266
was published
Dec 24, 2024
The WC Price History for Omnibus plugin for WordPress is vulnerable to unauthorized access due to...
Moderate
Unreviewed
CVE-2024-12617
was published
Dec 24, 2024
The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-12210
was published
Dec 24, 2024
The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid, Carousel and...
Moderate
Unreviewed
CVE-2024-11852
was published
Dec 22, 2024
The WP BASE Booking of Appointments, Services and Events plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-12558
was published
Dec 21, 2024
In JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify...
Moderate
Unreviewed
CVE-2024-56349
was published
Dec 20, 2024
The File Manager Pro – Filester plugin for WordPress is vulnerable to unauthorized modification...
Moderate
Unreviewed
CVE-2024-12331
was published
Dec 19, 2024
Missing Authorization vulnerability in Yudiz Solutions Ltd. WP Menu Image allows Exploiting...
Moderate
Unreviewed
CVE-2024-52485
was published
Dec 18, 2024
Missing Authorization vulnerability in Web Chunky Order Delivery & Pickup Location Date Time...
Moderate
Unreviewed
CVE-2024-55997
was published
Dec 18, 2024
The Travel Booking WordPress Theme theme for WordPress is vulnerable to unauthorized modification...
Moderate
Unreviewed
CVE-2024-11926
was published
Dec 18, 2024
The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-12596
was published
Dec 18, 2024
Missing Authorization vulnerability in David Cramer Caldera SMTP Mailer.This issue affects...
Moderate
Unreviewed
CVE-2024-56003
was published
Dec 16, 2024
Missing Authorization vulnerability in Marco Giannini XML Multilanguage Sitemap Generator.This...
Moderate
Unreviewed
CVE-2024-55999
was published
Dec 16, 2024
Missing Authorization vulnerability in spreadr Spreadr Woocommerce allows Accessing Functionality...
Moderate
Unreviewed
CVE-2024-56009
was published
Dec 16, 2024
Missing Authorization vulnerability in Ksher Ksher allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2024-56001
was published
Dec 16, 2024
Missing Authorization vulnerability in dusthazard Popup Surveys & Polls for WordPress (Mare.io)...
Moderate
Unreviewed
CVE-2024-55998
was published
Dec 16, 2024
Missing Authorization vulnerability in PickPlugins Job Board Manager allows Exploiting...
Moderate
Unreviewed
CVE-2024-55993
was published
Dec 16, 2024
Missing Authorization vulnerability in Ram Segev Leader allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2024-56007
was published
Dec 16, 2024
Missing Authorization vulnerability in Alex W Fowler Easy Site Importer allows Exploiting...
Moderate
Unreviewed
CVE-2024-56004
was published
Dec 16, 2024
Missing Authorization vulnerability in Open Tools WooCommerce Basic Ordernumbers allows...
Moderate
Unreviewed
CVE-2024-55992
was published
Dec 16, 2024
Missing Authorization vulnerability in Dreamfox Dreamfox Media Payment gateway per Product for...
Moderate
Unreviewed
CVE-2024-55996
was published
Dec 16, 2024
Missing Authorization vulnerability in 搜狐畅言 畅言评论系统 allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2024-55994
was published
Dec 16, 2024
Missing Authorization vulnerability in Pixelgrade PixProof allows Accessing Functionality Not...
Moderate
Unreviewed
CVE-2024-54417
was published
Dec 16, 2024
ProTip!
Advisories are also available from the
GraphQL API