GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,659
Composer 4,237
Erlang 31
GitHub Actions 20
Go 1,996
Maven 5,181
npm 3,709
NuGet 661
pip 3,348
Pub 11
RubyGems 885
Rust 846
Swift 36

Unreviewed advisories

All unreviewed 235,055

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

235,055 advisories

Filter by severity

Sort by

Least recently updated

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52449 was published Nov 20, 2024

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')... Critical Unreviewed

CVE-2024-52441 was published Nov 20, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52444 was published Nov 20, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-52450 was published Nov 20, 2024

Deserialization of Untrusted Data vulnerability in Nerijus Masikonis Geolocator allows Object... Critical Unreviewed

CVE-2024-52443 was published Nov 20, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Aaron Robbins Post Ideas allows SQL Injection... High Unreviewed

CVE-2024-52451 was published Nov 20, 2024

Path Traversal: '.../...//' vulnerability in Corporate Zen Contact Page With Google Map allows... High Unreviewed

CVE-2024-52447 was published Nov 20, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52448 was published Nov 20, 2024

The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-11179 was published Nov 20, 2024

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-10872 was published Nov 20, 2024

The WP Project Manager plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed

CVE-2024-10520 was published Nov 20, 2024

Missing Authentication for Critical Function vulnerability in Saul Morales Pacheco Banner System... High Unreviewed

CVE-2024-52437 was published Nov 20, 2024

Missing Authentication for Critical Function vulnerability in deco.Agency de:branding allows... High Unreviewed

CVE-2024-52438 was published Nov 20, 2024

There exists a code execution vulnerability in the Car App Android Jetpack Library. In the... High Unreviewed

CVE-2024-10382 was published Nov 20, 2024

The Save as PDF Plugin by Pdfcrowd plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-10891 was published Nov 20, 2024

The Yaad Sarig Payment Gateway For WC plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-10665 was published Nov 20, 2024

**UNSUPPORTED WHEN ASSIGNED** The improper authentication vulnerability in the Zyxel P-6101C ADSL... High Unreviewed

CVE-2024-11494 was published Nov 20, 2024

Improper access control vulnerability in M-Files Aino in versions before 24.10 allowed an... Moderate Unreviewed

CVE-2024-11176 was published Nov 20, 2024

The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu,... Moderate Unreviewed

CVE-2024-10365 was published Nov 20, 2024

The Image Optimizer, Resizer and CDN – Sirv plugin for WordPress is vulnerable to unauthorized... High Unreviewed

CVE-2024-10855 was published Nov 20, 2024

The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-10900 was published Nov 20, 2024

Local File Inclusion vulnerability in M-Files Server in versions before 24.11 (excluding 24.8 SR1... Moderate Unreviewed

CVE-2024-10126 was published Nov 20, 2024

Authentication bypass condition in LDAP authentication in M-Files server versions before 24.11... Critical Unreviewed

CVE-2024-10127 was published Nov 20, 2024

The Booster for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed

CVE-2024-9239 was published Nov 20, 2024

The 404 Solution plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URLs in... Moderate Unreviewed

CVE-2024-11277 was published Nov 20, 2024

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

235,055 advisories