GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,992 advisories
Filter by severity
The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10606
was published
Nov 23, 2024
The WPDash Notes plugin for WordPress is vulnerable to unauthorized access of data due to a...
Moderate
Unreviewed
CVE-2024-9223
was published
Nov 23, 2024
The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10537
was published
Nov 23, 2024
The Product Table for WooCommerce by CodeAstrology (wooproducttable.com) plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10813
was published
Nov 23, 2024
The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10216
was published
Nov 23, 2024
The Ultimate YouTube Video & Shorts Player With Vimeo plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11355
was published
Nov 22, 2024
The PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes plugin...
Moderate
Unreviewed
CVE-2024-11154
was published
Nov 20, 2024
The WP Project Manager plugin for WordPress is vulnerable to unauthorized modification of data...
Moderate
Unreviewed
CVE-2024-10520
was published
Nov 20, 2024
The Yaad Sarig Payment Gateway For WC plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-10665
was published
Nov 20, 2024
The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10900
was published
Nov 20, 2024
Missing Authorization vulnerability in QunatumCloud Floating Buttons for WooCommerce allows...
Moderate
Unreviewed
CVE-2024-52395
was published
Nov 19, 2024
Missing Authorization vulnerability in Zakaria Binsaifullah Easy Accordion Gutenberg Block allows...
Moderate
Unreviewed
CVE-2024-51660
was published
Nov 19, 2024
Missing Authorization vulnerability in CodeZel Combo WP Rewrite Slugs allows Exploiting...
Moderate
Unreviewed
CVE-2024-51817
was published
Nov 19, 2024
Missing Authorization vulnerability in Harmonic Design HD Quiz – Save Results Light allows...
Moderate
Unreviewed
CVE-2024-49689
was published
Nov 19, 2024
Missing Authorization vulnerability in Rextheme WP VR allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2024-49680
was published
Nov 19, 2024
Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting...
Moderate
Unreviewed
CVE-2024-49697
was published
Nov 19, 2024
Missing Authorization vulnerability in BoldThemes Bold Page Builder allows Exploiting Incorrectly...
Moderate
Unreviewed
CVE-2024-50417
was published
Nov 19, 2024
The WordPress GDPR plugin for WordPress is vulnerable to unauthorized loss of data due to a...
Moderate
Unreviewed
CVE-2024-11069
was published
Nov 19, 2024
The Google for WooCommerce plugin for WordPress is vulnerable to Information Disclosure in all...
Moderate
Unreviewed
CVE-2024-10486
was published
Nov 19, 2024
The Elfsight Telegram Chat CC plugin for WordPress is vulnerable to unauthorized modification of...
Moderate
Unreviewed
CVE-2024-10390
was published
Nov 18, 2024
moodle: Some users can delete audiences of other reports
Moderate
CVE-2024-48898
was published
for
moodle/moodle
(Composer)
Nov 18, 2024
In Bitcoin Core before 25.0, a peer can affect the download state of other peers by sending a...
Moderate
Unreviewed
CVE-2024-52921
was published
Nov 18, 2024
The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to unauthorized access...
Moderate
Unreviewed
CVE-2024-10614
was published
Nov 16, 2024
The WP Log Viewer plugin for WordPress is vulnerable to unauthorized use of functionality due to...
Moderate
Unreviewed
CVE-2024-11085
was published
Nov 16, 2024
The WP Chat App plugin for WordPress is vulnerable to unauthorized plugin installation due to a...
Moderate
Unreviewed
CVE-2024-10533
was published
Nov 16, 2024
ProTip!
Advisories are also available from the
GraphQL API