GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,678
NuGet
645
pip
3,297
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,681 advisories
Filter by severity
The GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor plugin for...
Critical
Unreviewed
CVE-2024-9234
was published
Oct 11, 2024
In JetBrains YouTrack before 2024.3.46677 improper access control allowed users with project...
Moderate
Unreviewed
CVE-2024-48902
was published
Oct 10, 2024
The UserPlus plugin for WordPress is vulnerable to unauthorized access, modification, and loss of...
Moderate
Unreviewed
CVE-2024-9520
was published
Oct 10, 2024
The WP Helper Premium plugin for WordPress is vulnerable to unauthorized modification of data due...
Moderate
Unreviewed
CVE-2024-9065
was published
Oct 10, 2024
The Notification for Telegram plugin for WordPress is vulnerable to unauthorized test message...
Moderate
Unreviewed
CVE-2024-9685
was published
Oct 10, 2024
The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for...
Moderate
Unreviewed
CVE-2024-9067
was published
Oct 10, 2024
The QA Analytics – Web Analytics Tool with Heatmaps & Session Replay Across All Pages plugin for...
Moderate
Unreviewed
CVE-2024-8513
was published
Oct 10, 2024
Azure Stack Hyperconverged Infrastructure (HCI) Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38179
was published
Oct 8, 2024
The Photo Gallery, Images, Slider in Rbs Image Gallery plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-8431
was published
Oct 8, 2024
The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-9161
was published
Oct 5, 2024
** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in D3D Security IP Camera due to usage...
High
Unreviewed
CVE-2024-47790
was published
Oct 4, 2024
A vulnerability in the REST API endpoints of Cisco Nexus Dashboard could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20442
was published
Oct 2, 2024
A vulnerability in the REST API endpoints of Cisco NDFC could allow an authenticated, low...
Moderate
Unreviewed
CVE-2024-20438
was published
Oct 2, 2024
A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low...
Moderate
Unreviewed
CVE-2024-20477
was published
Oct 2, 2024
The Spice Starter Sites plugin for WordPress is vulnerable to unauthorized modification of data...
Moderate
Unreviewed
CVE-2024-8430
was published
Oct 1, 2024
The KB Support – WordPress Help Desk and Knowledge Base plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-8632
was published
Oct 1, 2024
The KB Support – WordPress Help Desk and Knowledge Base plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-8548
was published
Oct 1, 2024
The Soumettre.fr plugin for WordPress is vulnerable to unauthorized modification of data due to a...
Moderate
Unreviewed
CVE-2024-8675
was published
Oct 1, 2024
A vulnerability was found in SourceCodester Online Railway Reservation System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-9297
was published
Sep 28, 2024
The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-9189
was published
Sep 28, 2024
In Eclipse Dataspace Components versions 0.1.3 to 0.9.0, the Connector component filters which...
Moderate
Unreviewed
CVE-2024-9202
was published
Sep 27, 2024
The Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress...
Moderate
Unreviewed
CVE-2024-8771
was published
Sep 26, 2024
Missing Authorization vulnerability in Stuart Wilson Joy Of Text Lite.This issue affects Joy Of...
Moderate
Unreviewed
CVE-2024-47337
was published
Sep 26, 2024
The Sight – Professional Image Gallery and Portfolio plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-9025
was published
Sep 26, 2024
The Download Monitor plugin for WordPress is vulnerable to unauthorized modification of data due...
Moderate
Unreviewed
CVE-2024-8552
was published
Sep 26, 2024
ProTip!
Advisories are also available from the
GraphQL API