Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,360
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,793
NuGet
683
pip
3,471
Pub
12
RubyGems
894
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,426 advisories

Loading
The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2023-5415 was published Nov 22, 2023
The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2023-5419 was published Nov 22, 2023
The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2023-5387 was published Nov 22, 2023
The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2023-5411 was published Nov 22, 2023
The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2023-5386 was published Nov 22, 2023
The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2023-5416 was published Nov 22, 2023
The UserPro plugin for WordPress is vulnerable to unauthorized access of data due to a missing... Moderate Unreviewed
CVE-2023-2448 was published Nov 22, 2023
Missing Authorization in GitHub repository pkp/pkp-lib prior to 3.3.0-16. Moderate Unreviewed
CVE-2023-5900 was published Nov 14, 2023
The ImageMapper plugin for WordPress is vulnerable to unauthorized loss of data due to a missing... Moderate Unreviewed
CVE-2023-5506 was published Nov 14, 2023
Prometheus metrics are available without authentication. These expose detailed and sensitive... Moderate Unreviewed
CVE-2023-6001 was published Nov 8, 2023
Submitty before v22.06.00 is vulnerable to Incorrect Access Control. An attacker can delete any... Moderate Unreviewed
CVE-2023-43194 was published Nov 3, 2023
In engineermode, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42648 was published Nov 1, 2023
In validationtools, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42636 was published Nov 1, 2023
In validationtools, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42637 was published Nov 1, 2023
In validationtools, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42643 was published Nov 1, 2023
In validationtools, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42642 was published Nov 1, 2023
In validationtools, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42638 was published Nov 1, 2023
In validationtools, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42635 was published Nov 1, 2023
In engineermode, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42650 was published Nov 1, 2023
In Ifaa service, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42646 was published Nov 1, 2023
In dm service, there is a possible missing permission check. This could lead to local information... Moderate Unreviewed
CVE-2023-42654 was published Nov 1, 2023
In dm service, there is a possible missing permission check. This could lead to local information... Moderate Unreviewed
CVE-2023-42644 was published Nov 1, 2023
In validationtools, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42639 was published Nov 1, 2023
In engineermode, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42652 was published Nov 1, 2023
In validationtools, there is a possible missing permission check. This could lead to local... Moderate Unreviewed
CVE-2023-42641 was published Nov 1, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database