Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,977 advisories

Loading
The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress is... Moderate Unreviewed
CVE-2024-10606 was published Nov 23, 2024
The Product Table for WooCommerce by CodeAstrology (wooproducttable.com) plugin for WordPress is... Moderate Unreviewed
CVE-2024-10813 was published Nov 23, 2024
The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-10216 was published Nov 23, 2024
The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-10537 was published Nov 23, 2024
The WPDash Notes plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed
CVE-2024-9223 was published Nov 23, 2024
NVIDIA Base Command Manager contains a missing authentication vulnerability in the CMDaemon... Critical Unreviewed
CVE-2024-0138 was published Nov 23, 2024
NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an... High Unreviewed
CVE-2024-0122 was published Nov 23, 2024
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post... High Unreviewed
CVE-2024-11104 was published Nov 22, 2024
The Ultimate YouTube Video & Shorts Player With Vimeo plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-11355 was published Nov 22, 2024
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post... High Unreviewed
CVE-2024-11601 was published Nov 22, 2024
The Breakdance plugin for WordPress is vulnerable to unauthorized access of data in all versions... Moderate Unreviewed
CVE-2024-5331 was published Aug 1, 2024
In multiple functions of healthconnect, there is a possible leakage of exercise route data due to... Low Unreviewed
CVE-2024-0052 was published Mar 11, 2024
Apache IoTDB grafana-connector contains an interface without authorization High
CVE-2022-38370 was published for org.apache.iotdb:iotdb-grafana-connector (Maven) Sep 6, 2022
The PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes plugin... Moderate Unreviewed
CVE-2024-11154 was published Nov 20, 2024
The WP Project Manager plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed
CVE-2024-10520 was published Nov 20, 2024
The Yaad Sarig Payment Gateway For WC plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-10665 was published Nov 20, 2024
The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-10900 was published Nov 20, 2024
TOTOLINK EX200 V4.0.3c.7646_B20201211 does not contain an authentication mechanism by default. High Unreviewed
CVE-2024-31813 was published Apr 8, 2024
Improper Access Control in janeczku/calibre-web Moderate
CVE-2021-3987 was published for calibreweb (pip) Nov 15, 2024
Missing Authorization vulnerability in QunatumCloud Floating Buttons for WooCommerce allows... Moderate Unreviewed
CVE-2024-52395 was published Nov 19, 2024
Missing Authorization vulnerability in CodeZel Combo WP Rewrite Slugs allows Exploiting... Moderate Unreviewed
CVE-2024-51817 was published Nov 19, 2024
Missing Authorization vulnerability in ThemeIsle Otter - Gutenberg Block allows Exploiting... Low Unreviewed
CVE-2024-51671 was published Nov 19, 2024
Missing Authorization vulnerability in BoldThemes Bold Page Builder allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2024-50417 was published Nov 19, 2024
Missing Authorization vulnerability in Harmonic Design HD Quiz – Save Results Light allows... Moderate Unreviewed
CVE-2024-49689 was published Nov 19, 2024
Missing Authorization vulnerability in Rextheme WP VR allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2024-49680 was published Nov 19, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database