GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,575 advisories
Filter by severity
The Image Alt Text plugin for WordPress is vulnerable to unauthorized modification of data| due...
Moderate
Unreviewed
CVE-2024-11918
was published
Nov 28, 2024
In checkPermissions of RecognitionService.java, there is a possible permissions bypass due to a...
High
Unreviewed
CVE-2017-13316
was published
Nov 27, 2024
The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2024-10580
was published
Nov 27, 2024
An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5...
High
Unreviewed
CVE-2024-8114
was published
Nov 26, 2024
The Ultimate YouTube Video & Shorts Player With Vimeo plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11354
was published
Nov 26, 2024
The My Contador lesr plugin for WordPress is vulnerable to unauthorized access of data due to a...
Moderate
Unreviewed
CVE-2024-11334
was published
Nov 26, 2024
The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2024-10579
was published
Nov 26, 2024
The Spam protection, Anti-Spam, FireWall by CleanTalk plugin for WordPress is vulnerable to...
Critical
Unreviewed
CVE-2024-10542
was published
Nov 26, 2024
Dell Wyse Management Suite, version WMS 4.4 and prior, contain a Missing Authorization...
Moderate
Unreviewed
CVE-2024-49596
was published
Nov 26, 2024
The com.uaudio.bsd.helper service, responsible for handling privileged operations, fails to...
High
Unreviewed
CVE-2024-8272
was published
Nov 25, 2024
The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to privilege...
High
Unreviewed
CVE-2024-9941
was published
Nov 23, 2024
The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10606
was published
Nov 23, 2024
The WPDash Notes plugin for WordPress is vulnerable to unauthorized access of data due to a...
Moderate
Unreviewed
CVE-2024-9223
was published
Nov 23, 2024
The Product Table for WooCommerce by CodeAstrology (wooproducttable.com) plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10813
was published
Nov 23, 2024
The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10216
was published
Nov 23, 2024
The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10537
was published
Nov 23, 2024
NVIDIA Base Command Manager contains a missing authentication vulnerability in the CMDaemon...
Critical
Unreviewed
CVE-2024-0138
was published
Nov 23, 2024
NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an...
High
Unreviewed
CVE-2024-0122
was published
Nov 23, 2024
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post...
High
Unreviewed
CVE-2024-11104
was published
Nov 22, 2024
The Ultimate YouTube Video & Shorts Player With Vimeo plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11355
was published
Nov 22, 2024
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post...
High
Unreviewed
CVE-2024-11601
was published
Nov 22, 2024
The PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes plugin...
Moderate
Unreviewed
CVE-2024-11154
was published
Nov 20, 2024
The WP Project Manager plugin for WordPress is vulnerable to unauthorized modification of data...
Moderate
Unreviewed
CVE-2024-10520
was published
Nov 20, 2024
The Yaad Sarig Payment Gateway For WC plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-10665
was published
Nov 20, 2024
The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10900
was published
Nov 20, 2024
ProTip!
Advisories are also available from the
GraphQL API