GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,909
Composer 4,270
Erlang 31
GitHub Actions 21
Go 2,044
Maven 5,228
npm 3,736
NuGet 663
pip 3,414
Pub 12
RubyGems 891
Rust 868
Swift 36

Unreviewed advisories

All unreviewed 238,239

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,971 advisories

Filter by severity

Sort by

Least recently updated

Missing Authorization vulnerability in theDotstore Advance Menu Manager.This issue affects... High Unreviewed

CVE-2024-54381 was published Dec 18, 2024

Missing Authorization vulnerability in VibeThemes WPLMS allows Accessing Functionality Not... High Unreviewed

CVE-2024-56048 was published Dec 18, 2024

In the development options section of the Settings app, there is a possible authentication bypass... High Unreviewed

CVE-2018-9477 was published Nov 20, 2024

In multiple functions of ShortcutService.java, there is a possible creation of a spoofed shortcut... High Unreviewed

CVE-2018-9469 was published Nov 20, 2024

In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings... High Unreviewed

CVE-2017-13314 was published Nov 16, 2024

Missing Authorization vulnerability in Web Chunky Order Delivery & Pickup Location Date Time... Moderate Unreviewed

CVE-2024-55997 was published Dec 18, 2024

The Travel Booking WordPress Theme theme for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2024-11926 was published Dec 18, 2024

Missing Authorization vulnerability in Yudiz Solutions Ltd. WP Menu Image allows Exploiting... Moderate Unreviewed

CVE-2024-52485 was published Dec 18, 2024

Missing Authorization vulnerability in spreadr Spreadr Woocommerce allows Accessing Functionality... High Unreviewed

CVE-2024-56008 was published Dec 18, 2024

The CRM WordPress Plugin – RepairBuddy plugin for WordPress is vulnerable to privilege escalation... High Unreviewed

CVE-2024-12259 was published Dec 18, 2024

The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is... Moderate Unreviewed

CVE-2024-12596 was published Dec 18, 2024

In multiple locations, there is a possible permissions bypass due to a missing null check. This... High Unreviewed

CVE-2024-34719 was published Nov 13, 2024

In updateInternal of MediaProvider.java , there is a possible access of another app's files due... High Unreviewed

CVE-2024-43089 was published Nov 13, 2024

In wifi_item_edit_content of styles.xml , there is a possible FRP bypass due to Missing check for... High Unreviewed

CVE-2024-40650 was published Sep 11, 2024

In mayAdminGrantPermission of AdminRestrictedPermissionsUtils.java, there is a possible way to... High Unreviewed

CVE-2024-40661 was published Nov 13, 2024

In DevmemIntChangeSparse2 of devicemem_server.c, there is a possible way to achieve arbitrary... High Unreviewed

CVE-2024-40671 was published Nov 13, 2024

In multiple locations, there is a possible way to bypass a restriction on adding new Wi-Fi... High Unreviewed

CVE-2024-31332 was published Jul 9, 2024

In several functions of several files, there is a possible way to access developer mode traces... Moderate Unreviewed

CVE-2023-21141 was published Jun 15, 2023

In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without... High Unreviewed

CVE-2024-31318 was published Jul 9, 2024

In onCreate of WifiDialogActivity.java, there is a possible way to bypass the... High Unreviewed

CVE-2024-23704 was published May 7, 2024

Missing Authorization vulnerability in Marco Giannini XML Multilanguage Sitemap Generator.This... Moderate Unreviewed

CVE-2024-55999 was published Dec 16, 2024

Missing Authorization vulnerability in David Cramer Caldera SMTP Mailer.This issue affects... Moderate Unreviewed

CVE-2024-56003 was published Dec 16, 2024

Missing Authorization vulnerability in Dreamfox Dreamfox Media Payment gateway per Product for... Moderate Unreviewed

CVE-2024-55996 was published Dec 16, 2024

Missing Authorization vulnerability in Open Tools WooCommerce Basic Ordernumbers allows... Moderate Unreviewed

CVE-2024-55992 was published Dec 16, 2024

Missing Authorization vulnerability in PickPlugins Job Board Manager allows Exploiting... Moderate Unreviewed

CVE-2024-55993 was published Dec 16, 2024

Previous 1 2 3 4 5 … 118 119 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,971 advisories