GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
110,838 advisories
Filter by severity
The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-11230
was published
Dec 23, 2024
A vulnerability classified as critical was found in FoxCMS up to 1.2. Affected by this...
Moderate
Unreviewed
CVE-2024-12901
was published
Dec 23, 2024
A vulnerability classified as critical has been found in FoxCMS up to 1.2. Affected is an unknown...
Moderate
Unreviewed
CVE-2024-12900
was published
Dec 23, 2024
A vulnerability was found in 1000 Projects Attendance Tracking Management System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-12898
was published
Dec 23, 2024
A vulnerability was found in 1000 Projects Attendance Tracking Management System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-12899
was published
Dec 23, 2024
home 5G HR02, Wi-Fi STATION SH-52B, and Wi-Fi STATION SH-54C contain a buffer overflow...
Moderate
Unreviewed
CVE-2024-47864
was published
Dec 23, 2024
Multiple SHARP routers contain an improper authentication vulnerability in the configuration...
Moderate
Unreviewed
CVE-2024-52321
was published
Dec 23, 2024
A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2...
Moderate
Unreviewed
CVE-2024-12896
was published
Dec 23, 2024
A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2...
Moderate
Unreviewed
CVE-2024-12897
was published
Dec 23, 2024
A vulnerability has been found in TreasureHuntGame TreasureHunt up to 963e0e0 and classified as...
Moderate
Unreviewed
CVE-2024-12895
was published
Dec 22, 2024
A vulnerability, which was classified as critical, was found in TreasureHuntGame TreasureHunt up...
Moderate
Unreviewed
CVE-2024-12894
was published
Dec 22, 2024
A vulnerability classified as critical has been found in code-projects Online Exam Mastering...
Moderate
Unreviewed
CVE-2024-12891
was published
Dec 22, 2024
A vulnerability classified as problematic was found in code-projects Online Exam Mastering System...
Moderate
Unreviewed
CVE-2024-12892
was published
Dec 22, 2024
A vulnerability, which was classified as problematic, has been found in Portabilis i-Educar up to...
Moderate
Unreviewed
CVE-2024-12893
was published
Dec 22, 2024
A vulnerability was found in code-projects Online Exam Mastering System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-12890
was published
Dec 22, 2024
The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid, Carousel and...
Moderate
Unreviewed
CVE-2024-11852
was published
Dec 22, 2024
A vulnerability was found in Codezips E-Commerce Website 1.0. It has been rated as critical....
Moderate
Unreviewed
CVE-2024-12884
was published
Dec 21, 2024
IBM i 7.3, 7.4, and 7.5
is vulnerable to server-side request forgery (SSRF). This may allow an...
Moderate
Unreviewed
CVE-2024-51463
was published
Dec 21, 2024
IBM i 7.3, 7.4, and 7.5 is vulnerable to bypassing Navigator for i interface restrictions. By...
Moderate
Unreviewed
CVE-2024-51464
was published
Dec 21, 2024
A vulnerability was found in code-projects Job Recruitment 1.0. It has been declared as...
Moderate
Unreviewed
CVE-2024-12883
was published
Dec 21, 2024
The LaTeX2HTML plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'ver'...
Moderate
Unreviewed
CVE-2024-11688
was published
Dec 21, 2024
The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to SQL Injection via the ...
Moderate
Unreviewed
CVE-2024-11722
was published
Dec 21, 2024
The MagicPost plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...
Moderate
Unreviewed
CVE-2024-12591
was published
Dec 21, 2024
The WP on AWS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via $_POST...
Moderate
Unreviewed
CVE-2024-12408
was published
Dec 21, 2024
The WP BASE Booking of Appointments, Services and Events plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-12558
was published
Dec 21, 2024
ProTip!
Advisories are also available from the
GraphQL API