GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,697 advisories
Filter by severity
The Image Alt Text plugin for WordPress is vulnerable to unauthorized modification of data| due...
Moderate
Unreviewed
CVE-2024-11918
was published
Nov 28, 2024
The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2024-10580
was published
Nov 27, 2024
The Ultimate YouTube Video & Shorts Player With Vimeo plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11354
was published
Nov 26, 2024
The My Contador lesr plugin for WordPress is vulnerable to unauthorized access of data due to a...
Moderate
Unreviewed
CVE-2024-11334
was published
Nov 26, 2024
The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2024-10579
was published
Nov 26, 2024
Dell Wyse Management Suite, version WMS 4.4 and prior, contain a Missing Authorization...
Moderate
Unreviewed
CVE-2024-49596
was published
Nov 26, 2024
The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10606
was published
Nov 23, 2024
The WPDash Notes plugin for WordPress is vulnerable to unauthorized access of data due to a...
Moderate
Unreviewed
CVE-2024-9223
was published
Nov 23, 2024
The Product Table for WooCommerce by CodeAstrology (wooproducttable.com) plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10813
was published
Nov 23, 2024
The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10216
was published
Nov 23, 2024
The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10537
was published
Nov 23, 2024
The Ultimate YouTube Video & Shorts Player With Vimeo plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11355
was published
Nov 22, 2024
The PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes plugin...
Moderate
Unreviewed
CVE-2024-11154
was published
Nov 20, 2024
The WP Project Manager plugin for WordPress is vulnerable to unauthorized modification of data...
Moderate
Unreviewed
CVE-2024-10520
was published
Nov 20, 2024
The Yaad Sarig Payment Gateway For WC plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-10665
was published
Nov 20, 2024
The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10900
was published
Nov 20, 2024
Missing Authorization vulnerability in QunatumCloud Floating Buttons for WooCommerce allows...
Moderate
Unreviewed
CVE-2024-52395
was published
Nov 19, 2024
Missing Authorization vulnerability in Zakaria Binsaifullah Easy Accordion Gutenberg Block allows...
Moderate
Unreviewed
CVE-2024-51660
was published
Nov 19, 2024
Missing Authorization vulnerability in CodeZel Combo WP Rewrite Slugs allows Exploiting...
Moderate
Unreviewed
CVE-2024-51817
was published
Nov 19, 2024
Missing Authorization vulnerability in BoldThemes Bold Page Builder allows Exploiting Incorrectly...
Moderate
Unreviewed
CVE-2024-50417
was published
Nov 19, 2024
Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting...
Moderate
Unreviewed
CVE-2024-49697
was published
Nov 19, 2024
Missing Authorization vulnerability in Harmonic Design HD Quiz – Save Results Light allows...
Moderate
Unreviewed
CVE-2024-49689
was published
Nov 19, 2024
Missing Authorization vulnerability in Rextheme WP VR allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2024-49680
was published
Nov 19, 2024
The WordPress GDPR plugin for WordPress is vulnerable to unauthorized loss of data due to a...
Moderate
Unreviewed
CVE-2024-11069
was published
Nov 19, 2024
The Google for WooCommerce plugin for WordPress is vulnerable to Information Disclosure in all...
Moderate
Unreviewed
CVE-2024-10486
was published
Nov 19, 2024
ProTip!
Advisories are also available from the
GraphQL API