GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,144
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,760
NuGet 678
pip 3,446
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,550

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

242,550 advisories

Filter by severity

Sort by

Least recently updated

IBM Automation Decision Services 23.0.2 allows web pages to be stored locally which can be read... Moderate Unreviewed

CVE-2024-31906 was published Jan 26, 2025

The Survey Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2024-13505 was published Jan 26, 2025

The Zox News theme for WordPress is vulnerable to unauthorized modification of data that can lead... High Unreviewed

CVE-2024-11936 was published Jan 26, 2025

The VikBooking Hotel Booking Engine & PMS plugin for WordPress is vulnerable to Cross-Site... High Unreviewed

CVE-2024-11641 was published Jan 26, 2025

The WC Affiliate – A Complete WooCommerce Affiliate Plugin plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12334 was published Jan 26, 2025

Develocity (formerly Gradle Enterprise) before 2024.1.8 has Incorrect Access Control. Project... High Unreviewed

CVE-2024-46881 was published Jan 26, 2025

The Membership Plugin – Restrict Content plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2024-11090 was published Jan 26, 2025

The Multiple Page Generator Plugin – MPG plugin for WordPress is vulnerable to Server-Side... Moderate Unreviewed

CVE-2024-10705 was published Jan 26, 2025

The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to... High Unreviewed

CVE-2024-10574 was published Jan 26, 2025

The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to SQL... High Unreviewed

CVE-2024-10628 was published Jan 26, 2025

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free. High Unreviewed

CVE-2022-49043 was published Jan 26, 2025

The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to arbitrary... High Unreviewed

CVE-2024-10633 was published Jan 26, 2025

The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to Reflected... Moderate Unreviewed

CVE-2024-10636 was published Jan 26, 2025

Develocity (formerly Gradle Enterprise) before 2024.3.1 allows an attacker who has network access... High Unreviewed

CVE-2025-24858 was published Jan 26, 2025

Local privilege escalation due to incorrect assignment of privileges of temporary files in the... High Unreviewed

CVE-2025-0542 was published Jan 25, 2025

Local privilege escalation in G DATA Security Client due to incorrect assignment of privileges to... High Unreviewed

CVE-2025-0543 was published Jan 25, 2025

IBM Cloud Pak System 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0... Moderate Unreviewed

CVE-2023-38012 was published Jan 25, 2025

IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to enumerate usernames due... Moderate Unreviewed

CVE-2024-35114 was published Jan 25, 2025

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2... Moderate Unreviewed

CVE-2023-38713 was published Jan 25, 2025

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2... Moderate Unreviewed

CVE-2023-38714 was published Jan 25, 2025

IBM Control Center 6.2.1 and 6.3.1 could allow an authenticated user to obtain sensitive... Moderate Unreviewed

CVE-2024-35113 was published Jan 25, 2025

IBM Analytics Content Hub 2.0 is vulnerable to a buffer overflow due to improper return length... High Unreviewed

CVE-2024-39750 was published Jan 25, 2025

IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0... Moderate Unreviewed

CVE-2023-38716 was published Jan 25, 2025

IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2024-35112 was published Jan 25, 2025

IBM Maximo Application Suite 8.10.12, 8.11.0, 9.0.1, and 9.1.0 - Monitor Component does not... Moderate Unreviewed

CVE-2024-35150 was published Jan 25, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

242,550 advisories