GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
2,990 advisories
Filter by severity
Missing Authorization vulnerability in ThemeIsle Otter - Gutenberg Block allows Exploiting...
Low
Unreviewed
CVE-2024-51671
was published
Nov 19, 2024
Missing Authorization vulnerability in Zakaria Binsaifullah Easy Accordion Gutenberg Block allows...
Moderate
Unreviewed
CVE-2024-51660
was published
Nov 19, 2024
Missing Authorization vulnerability in CodeZel Combo WP Rewrite Slugs allows Exploiting...
Moderate
Unreviewed
CVE-2024-51817
was published
Nov 19, 2024
Missing Authorization vulnerability in Harmonic Design HD Quiz – Save Results Light allows...
Moderate
Unreviewed
CVE-2024-49689
was published
Nov 19, 2024
Missing Authorization vulnerability in Rextheme WP VR allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2024-49680
was published
Nov 19, 2024
Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting...
Moderate
Unreviewed
CVE-2024-49697
was published
Nov 19, 2024
Missing Authorization vulnerability in BoldThemes Bold Page Builder allows Exploiting Incorrectly...
Moderate
Unreviewed
CVE-2024-50417
was published
Nov 19, 2024
The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is...
High
Unreviewed
CVE-2024-11194
was published
Nov 19, 2024
The WordPress GDPR plugin for WordPress is vulnerable to unauthorized loss of data due to a...
Moderate
Unreviewed
CVE-2024-11069
was published
Nov 19, 2024
The Google for WooCommerce plugin for WordPress is vulnerable to Information Disclosure in all...
Moderate
Unreviewed
CVE-2024-10486
was published
Nov 19, 2024
The Elfsight Telegram Chat CC plugin for WordPress is vulnerable to unauthorized modification of...
Moderate
Unreviewed
CVE-2024-10390
was published
Nov 18, 2024
moodle: Some users can delete audiences of other reports
Moderate
CVE-2024-48898
was published
for
moodle/moodle
(Composer)
Nov 18, 2024
In Bitcoin Core before 25.0, a peer can affect the download state of other peers by sending a...
Moderate
Unreviewed
CVE-2024-52921
was published
Nov 18, 2024
Missing Authorization vulnerability in Eugen Bobrowski Debug Tool allows Upload a Web Shell to a...
Critical
Unreviewed
CVE-2024-52416
was published
Nov 17, 2024
The Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX plugin for WordPress is...
High
Unreviewed
CVE-2024-10728
was published
Nov 16, 2024
The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to unauthorized access...
Moderate
Unreviewed
CVE-2024-10614
was published
Nov 16, 2024
The WP Chat App plugin for WordPress is vulnerable to unauthorized plugin installation due to a...
Moderate
Unreviewed
CVE-2024-10533
was published
Nov 16, 2024
The WP Log Viewer plugin for WordPress is vulnerable to unauthorized use of functionality due to...
Moderate
Unreviewed
CVE-2024-11085
was published
Nov 16, 2024
The Popup Box – Create Countdown, Coupon, Video, Contact Form Popups plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10861
was published
Nov 16, 2024
The Simple Local Avatars plugin for WordPress is vulnerable to unauthorized modification of...
Moderate
Unreviewed
CVE-2024-10786
was published
Nov 16, 2024
Improper Access Control in janeczku/calibre-web
Moderate
CVE-2021-3987
was published
for
calibreweb
(pip)
Nov 15, 2024
The Music Player for Elementor – Audio Player & Podcast Player plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2024-10582
was published
Nov 15, 2024
The Tutor LMS Elementor Addons plugin for WordPress is vulnerable to unauthorized plugin...
Moderate
Unreviewed
CVE-2024-10897
was published
Nov 15, 2024
Missing Authorization vulnerability in Medma Technologies Matix Popup Builder allows Privilege...
Critical
Unreviewed
CVE-2024-52382
was published
Nov 14, 2024
Missing Authorization vulnerability in KCT Ai Auto Tool Content Writing Assistant (Gemini Writer,...
High
Unreviewed
CVE-2024-52383
was published
Nov 14, 2024
ProTip!
Advisories are also available from the
GraphQL API