GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,857
Composer 4,472
Erlang 33
GitHub Actions 24
Go 2,195
Maven 5,421
npm 3,841
NuGet 696
pip 3,632
Pub 12
RubyGems 911
Rust 910
Swift 38

Unreviewed advisories

All unreviewed 248,618

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

871 advisories

Filter by severity

Sort by

Least recently updated

The The Coupon Affiliates – Affiliate Plugin for WooCommerce plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-12421 was published Dec 13, 2024

The The WPMobile.App — Android and iOS Mobile Application plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12420 was published Dec 13, 2024

The The Simple Link Directory plugin for WordPress is vulnerable to arbitrary shortcode execution... Moderate Unreviewed

CVE-2024-12417 was published Dec 13, 2024

The Woodmart theme for WordPress is vulnerable to arbitrary shortcode execution in all versions... Moderate Unreviewed

CVE-2024-12333 was published Dec 12, 2024

A vulnerability was found in JFinalCMS 1.0. It has been rated as critical. Affected by this issue... Moderate Unreviewed

CVE-2024-12350 was published Dec 9, 2024

The The Pojo Forms plugin for WordPress is vulnerable to arbitrary shortcode execution via... Moderate Unreviewed

CVE-2024-10909 was published Dec 6, 2024

The The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User... Moderate Unreviewed

CVE-2024-10681 was published Dec 6, 2024

QR/demoapp/qr_image.php in Asial JpGraph Professional through 4.2.6-pro allows remote attackers... Moderate Unreviewed

CVE-2024-39165 was published Jul 4, 2024

An issue in UltiMaker Cura v.4.41 and 5.8.1 and before allows a local attacker to execute... Moderate Unreviewed

CVE-2024-51330 was published Nov 15, 2024

The The InPost Gallery plugin for WordPress is vulnerable to arbitrary shortcode execution via... Moderate Unreviewed

CVE-2024-11002 was published Nov 26, 2024

The The Drop Shadow Boxes plugin for WordPress is vulnerable to arbitrary shortcode execution in... Moderate Unreviewed

CVE-2024-10262 was published Nov 16, 2024

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique... Moderate Unreviewed

CVE-2022-21928 was published Jan 12, 2022

Limited remote code execution with privilege of a NetworkService Account access in Citrix Session... Moderate Unreviewed

CVE-2024-8069 was published Nov 12, 2024

Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an... Moderate Unreviewed

CVE-2024-3044 was published May 14, 2024

The DS allvideo.downloader.browser (aka Fast Video Downloader: Browser) application through 1.6... Moderate Unreviewed

CVE-2024-46965 was published Nov 11, 2024

Brandon Rothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi did not have a... Moderate Unreviewed

CVE-2023-5677 was published Feb 5, 2024

Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay... Moderate Unreviewed

CVE-2023-5800 was published Feb 5, 2024

Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side... Moderate Unreviewed

CVE-2024-3786 was published Apr 15, 2024

Using a markup injection an attacker could have stolen nonce values. This could have been used to... Moderate Unreviewed

CVE-2024-2610 was published Mar 19, 2024

Certain Zemana products are vulnerable to Arbitrary code injection. This affects Watchdog Anti... Moderate Unreviewed

CVE-2022-42045 was published Jul 13, 2023

A vulnerability was found in Intelbras InControl up to 2.21.57. It has been rated as critical.... Moderate Unreviewed

CVE-2024-9324 was published Sep 29, 2024

Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side... Moderate Unreviewed

CVE-2024-3785 was published Apr 15, 2024

A vulnerability was found in wuzhicms 4.1.0. It has been classified as critical. Affected is the... Moderate Unreviewed

CVE-2024-10505 was published Oct 30, 2024

An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the... Moderate Unreviewed

CVE-2024-48236 was published Oct 26, 2024

An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the save method of... Moderate Unreviewed

CVE-2024-48235 was published Oct 26, 2024

Previous 1 2 3 4 5 … 34 35 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

871 advisories