GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,952
Composer 4,274
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,419
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,571

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

238,571 advisories

Filter by severity

Sort by

Least recently updated

The DirectoryPress – Business Directory And Classified Ad Listing plugin for WordPress is... Moderate Unreviewed

CVE-2024-10584 was published Dec 24, 2024

The Booking Calendar WpDevArt plugin is vulnerable to time-based, blind SQL injection via the `id... Moderate Unreviewed

CVE-2024-10856 was published Dec 24, 2024

The Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress plugin for WordPress... Moderate Unreviewed

CVE-2024-11726 was published Dec 24, 2024

The Advanced Floating Content plugin for WordPress is vulnerable to SQL Injection via the ... Moderate Unreviewed

CVE-2024-12031 was published Dec 24, 2024

The Responsive Blocks – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2024-12268 was published Dec 24, 2024

The Content No Cache: prevent specific content from being cached plugin for WordPress is... Moderate Unreviewed

CVE-2024-12103 was published Dec 24, 2024

The Database Backup and check Tables Automated With Scheduler 2024 plugin for WordPress is... Moderate Unreviewed

CVE-2024-12850 was published Dec 24, 2024

The PlugVersions – Easily rollback to previous versions of your plugins plugin for WordPress is... High Unreviewed

CVE-2024-12881 was published Dec 24, 2024

The Tracking Code Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-8721 was published Dec 24, 2024

The WP Datepicker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2024-12468 was published Dec 24, 2024

The Text Prompter – Unlimited chatgpt text prompts for openai tasks plugin for WordPress is... Moderate Unreviewed

CVE-2024-11896 was published Dec 24, 2024

The Loan Comparison plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-12814 was published Dec 24, 2024

The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-12622 was published Dec 24, 2024

Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed

CVE-2024-41885 was published Dec 24, 2024

Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed

CVE-2024-41884 was published Dec 24, 2024

Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed

CVE-2024-41882 was published Dec 24, 2024

Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed

CVE-2024-41883 was published Dec 24, 2024

Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed

CVE-2024-41887 was published Dec 24, 2024

Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed

CVE-2024-41886 was published Dec 24, 2024

A flaw was found in the skupper console, a read-only interface that renders cluster network,... High Unreviewed

CVE-2024-12582 was published Dec 24, 2024

The ELEX WooCommerce Dynamic Pricing and Discounts plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12266 was published Dec 24, 2024

The Optio Dentistry plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-12507 was published Dec 24, 2024

The ShMapper by Teplitsa plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-12518 was published Dec 24, 2024

The WC Price History for Omnibus plugin for WordPress is vulnerable to unauthorized access due to... Moderate Unreviewed

CVE-2024-12617 was published Dec 24, 2024

The WP-Appbox plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page'... Moderate Unreviewed

CVE-2024-12710 was published Dec 24, 2024

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

238,571 advisories