GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,678
NuGet
645
pip
3,297
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
105,884 advisories
Filter by severity
The News Kit Elementor Addons plugin for WordPress is vulnerable to Sensitive Information...
Moderate
Unreviewed
CVE-2024-9541
was published
Oct 22, 2024
The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Cross-Site Request...
Moderate
Unreviewed
CVE-2024-9588
was published
Oct 22, 2024
The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-9590
was published
Oct 22, 2024
The Category and Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
Moderate
Unreviewed
CVE-2024-9591
was published
Oct 22, 2024
The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-9589
was published
Oct 22, 2024
The All-in-One WP Migration and Backup plugin for WordPress is vulnerable to Sensitive...
Moderate
Unreviewed
CVE-2024-8852
was published
Oct 22, 2024
The Rover IDX plugin for WordPress is vulnerable to unauthorized access, modification, and loss...
Moderate
Unreviewed
CVE-2024-10003
was published
Oct 22, 2024
The insufficiently protected credentials vulnerability in the CLI command of the USG FLEX H...
Moderate
Unreviewed
CVE-2024-9677
was published
Oct 22, 2024
Buffer Overflow vulnerability in IrfanView 32bit v.4.66 allows a local attacker to cause a denial...
Moderate
Unreviewed
CVE-2024-31007
was published
Oct 21, 2024
Multiple Cross Site Scripting (XSS) vulnerabilities exist in PHPGurukul Hospital Management...
Moderate
Unreviewed
CVE-2024-46238
was published
Oct 21, 2024
Multiple cross-site scripting vulnerabilities exist in PHPGurukul Hospital Management System 4.0...
Moderate
Unreviewed
CVE-2024-46239
was published
Oct 21, 2024
CodeAstro Membership Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via the...
Moderate
Unreviewed
CVE-2024-48709
was published
Oct 21, 2024
CodeAstro Membership Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via the...
Moderate
Unreviewed
CVE-2024-46236
was published
Oct 21, 2024
prepareUnique index may cause secondaries to crash due to incorrect enforcement of index...
Moderate
Unreviewed
CVE-2024-8305
was published
Oct 21, 2024
Missing Authorization vulnerability in ProfileGrid User Profiles ProfileGrid.This issue affects...
Moderate
Unreviewed
CVE-2024-49273
was published
Oct 21, 2024
Missing Authorization vulnerability in Rextheme WP VR allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2024-49293
was published
Oct 21, 2024
Missing Authorization vulnerability in Colorlib Simple Custom Post Order allows Exploiting...
Moderate
Unreviewed
CVE-2024-49321
was published
Oct 21, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Latepoint LatePoint allows Cross Site Request...
Moderate
Unreviewed
CVE-2024-43945
was published
Oct 21, 2024
A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-10196
was published
Oct 21, 2024
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified...
Moderate
Unreviewed
CVE-2024-10197
was published
Oct 21, 2024
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared...
Moderate
Unreviewed
CVE-2024-10198
was published
Oct 21, 2024
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-10199
was published
Oct 21, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Noor Alam WordPress Image SEO allows Cross...
Moderate
Unreviewed
CVE-2024-49627
was published
Oct 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Streamline.Lv CartBounty – Save and recover...
Moderate
Unreviewed
CVE-2024-47634
was published
Oct 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WPWeb Social Auto Poster allows Cross Site...
Moderate
Unreviewed
CVE-2024-49272
was published
Oct 20, 2024
ProTip!
Advisories are also available from the
GraphQL API