GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
256,181 advisories
Filter by severity
The Quotes llama plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin...
Moderate
Unreviewed
CVE-2024-10874
was published
Nov 23, 2024
The Social Login plugin for WordPress is vulnerable to authentication bypass in all versions up...
Critical
Unreviewed
CVE-2024-10961
was published
Nov 23, 2024
The WordPress Brute Force Protection – Stop Brute Force Attacks plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10869
was published
Nov 23, 2024
The Slotti Ajanvaraus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-11408
was published
Nov 23, 2024
The Easy Liveblogs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-11387
was published
Nov 23, 2024
The AutoListicle: Automatically Update Numbered List Articles plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2024-11426
was published
Nov 23, 2024
The Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPal, Square, Authorize.net...
Moderate
Unreviewed
CVE-2024-11362
was published
Nov 23, 2024
The PDF Invoices & Packing Slips Generator for WooCommerce plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11361
was published
Nov 23, 2024
The HIPAA Compliant Forms with Drag’n’Drop HIPAA Form Builder. Sign HIPAA documents plugin for...
Moderate
Unreviewed
CVE-2024-11332
was published
Nov 23, 2024
The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10606
was published
Nov 23, 2024
The Increase Maximum Upload File Size | Increase Execution Time plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-11265
was published
Nov 23, 2024
The Formidable Forms – Contact Form Plugin, Survey, Quiz, Payment, Calculator Form & Custom Form...
Moderate
Unreviewed
CVE-2024-11188
was published
Nov 23, 2024
The Tribute Testimonials – WordPress Testimonial Grid/Slider plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2024-10886
was published
Nov 23, 2024
The Product Table for WooCommerce by CodeAstrology (wooproducttable.com) plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10813
was published
Nov 23, 2024
The WP-Orphanage Extended plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
High
Unreviewed
CVE-2024-11415
was published
Nov 23, 2024
The Twitter Follow Button plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-10116
was published
Nov 23, 2024
The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10216
was published
Nov 23, 2024
The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10537
was published
Nov 23, 2024
The DeBounce Email Validator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting...
Moderate
Unreviewed
CVE-2024-11463
was published
Nov 23, 2024
The WPDash Notes plugin for WordPress is vulnerable to unauthorized access of data due to a...
Moderate
Unreviewed
CVE-2024-9223
was published
Nov 23, 2024
A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is...
Moderate
Unreviewed
CVE-2023-40660
was published
Nov 6, 2023
github.com/containers/image allows unexpected authenticated registry accesses
High
CVE-2024-3727
was published
for
github.com/containers/image
(Go)
May 14, 2024
In the Linux kernel, the following vulnerability has been resolved:
mctp i2c: handle NULL header...
Moderate
Unreviewed
CVE-2024-53043
was published
Nov 19, 2024
A vulnerability, which was classified as critical, was found in code-projects Task Manager 1.0....
Moderate
Unreviewed
CVE-2024-11096
was published
Nov 12, 2024
The CTT Expresso para WooCommerce plugin for WordPress is vulnerable to sensitive information...
Moderate
Unreviewed
CVE-2024-6687
was published
Aug 1, 2024
ProTip!
Advisories are also available from the
GraphQL API