GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,263
Erlang
31
GitHub Actions
21
Go
2,033
Maven
5,000+
npm
3,732
NuGet
662
pip
3,411
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
2,314 advisories
Filter by severity
The The Grid Plus – Unlimited grid layout plugin for WordPress is vulnerable to arbitrary...
High
Unreviewed
CVE-2024-10910
was published
Dec 12, 2024
A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2,...
High
Unreviewed
CVE-2024-54529
was published
Dec 12, 2024
The The Active Products Tables for WooCommerce. Use constructor to create tables plugin for...
High
Unreviewed
CVE-2024-10959
was published
Dec 10, 2024
An issue was discovered in Qlik Sense Enterprise for Windows before November 2024 IR....
High
Unreviewed
CVE-2024-55580
was published
Dec 9, 2024
Due to missing input validation during one step of the firmware update process, the product
is...
High
Unreviewed
CVE-2024-10771
was published
Dec 6, 2024
Snyk has identified a remote code execution (RCE) vulnerability in all versions of Code Agent....
High
Unreviewed
CVE-2024-21571
was published
Dec 6, 2024
Buffer Overflow vulnerability in Open Robotic Robotic Operating System 2 ROS2 navigation2- ROS2...
High
Unreviewed
CVE-2024-37862
was published
Dec 6, 2024
Buffer Overflow vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2-...
High
Unreviewed
CVE-2024-30963
was published
Dec 6, 2024
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2...
High
Unreviewed
CVE-2024-30961
was published
Dec 6, 2024
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2...
High
Unreviewed
CVE-2024-30964
was published
Dec 6, 2024
Buffer Overflow vulnerability in Open Robotic Operating System 2 ROS2 navigation2- ROS2-humble&&...
High
Unreviewed
CVE-2024-37860
was published
Dec 6, 2024
The The Authors List plugin for WordPress is vulnerable to arbitrary shortcode execution via...
High
Unreviewed
CVE-2024-10952
was published
Dec 4, 2024
An authenticated arbitrary file upload vulnerability in the component /module_admin/upload.php of...
High
Unreviewed
CVE-2024-53564
was published
Dec 2, 2024
Withdrawn Advisory: Symfony's VarDumper vulnerable to unsafe deserialization
High
CVE-2024-36610
was published
for
symfony/var-dumper
(Composer)
Nov 29, 2024
•
withdrawn
Improper Control of Generation of Code ('Code Injection') vulnerability in Rank Math SEO allows...
High
Unreviewed
CVE-2024-11620
was published
Nov 28, 2024
When handling keypress events, an attacker may have been able to trick a user into bypassing the ...
High
Unreviewed
CVE-2024-11697
was published
Nov 26, 2024
Memory safety bugs present in Firefox 132, Firefox ESR 128.4, and Thunderbird 128.4. Some of...
High
Unreviewed
CVE-2024-11699
was published
Nov 26, 2024
IBM Data Virtualization Manager for z/OS 1.1 and 1.2 could allow an authenticated user to inject...
High
Unreviewed
CVE-2024-52899
was published
Nov 26, 2024
A Client-Side Template Injection (CSTI) vulnerability in the component /project/new/scrum of...
High
Unreviewed
CVE-2024-53554
was published
Nov 26, 2024
The The Request a Quote for WooCommerce and Elementor – Get a Quote Button – Product Enquiry Form...
High
Unreviewed
CVE-2024-11034
was published
Nov 23, 2024
Possible Command injection Vulnerability
in iManager has been discovered in
OpenText™ iManager 3...
High
Unreviewed
CVE-2021-38117
was published
Nov 22, 2024
There exists a code execution vulnerability in the Car App Android Jetpack Library. In the...
High
Unreviewed
CVE-2024-10382
was published
Nov 20, 2024
The The WooCommerce Product Table Lite plugin for WordPress is vulnerable to arbitrary shortcode...
High
Unreviewed
CVE-2024-10899
was published
Nov 20, 2024
The The GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in...
High
Unreviewed
CVE-2024-11036
was published
Nov 19, 2024
The The WPB Popup for Contact Form 7 – Showing The Contact Form 7 Popup on Button Click – CF7...
High
Unreviewed
CVE-2024-11038
was published
Nov 19, 2024
ProTip!
Advisories are also available from the
GraphQL API