GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,457

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

108,934 advisories

Filter by severity

Sort by

Least recently updated

The Quotes llama plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2024-10874 was published Nov 23, 2024

The HIPAA Compliant Forms with Drag’n’Drop HIPAA Form Builder. Sign HIPAA documents plugin for... Moderate Unreviewed

CVE-2024-11332 was published Nov 23, 2024

The WordPress Brute Force Protection – Stop Brute Force Attacks plugin for WordPress is... Moderate Unreviewed

CVE-2024-10869 was published Nov 23, 2024

The AutoListicle: Automatically Update Numbered List Articles plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-11426 was published Nov 23, 2024

The Enter Addons – Ultimate Template Builder for Elementor plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-10868 was published Nov 23, 2024

The Increase Maximum Upload File Size | Increase Execution Time plugin for WordPress is... Moderate Unreviewed

CVE-2024-11265 was published Nov 23, 2024

The Formidable Forms – Contact Form Plugin, Survey, Quiz, Payment, Calculator Form & Custom Form... Moderate Unreviewed

CVE-2024-11188 was published Nov 23, 2024

The PDF Invoices & Packing Slips Generator for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-11361 was published Nov 23, 2024

The Slotti Ajanvaraus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-11408 was published Nov 23, 2024

The JobBoardWP – Job Board Listings and Submissions plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-10880 was published Nov 23, 2024

The Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPal, Square, Authorize.net... Moderate Unreviewed

CVE-2024-11362 was published Nov 23, 2024

The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress is... Moderate Unreviewed

CVE-2024-10606 was published Nov 23, 2024

The Easy Liveblogs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-11387 was published Nov 23, 2024

The Product Table for WooCommerce by CodeAstrology (wooproducttable.com) plugin for WordPress is... Moderate Unreviewed

CVE-2024-10813 was published Nov 23, 2024

The Tribute Testimonials – WordPress Testimonial Grid/Slider plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-10886 was published Nov 23, 2024

The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-10216 was published Nov 23, 2024

The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-10537 was published Nov 23, 2024

The Twitter Follow Button plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-10116 was published Nov 23, 2024

A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is... Moderate Unreviewed

CVE-2023-40660 was published Nov 6, 2023

The WPDash Notes plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed

CVE-2024-9223 was published Nov 23, 2024

The DeBounce Email Validator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed

CVE-2024-11463 was published Nov 23, 2024

In the Linux kernel, the following vulnerability has been resolved: mctp i2c: handle NULL header... Moderate Unreviewed

CVE-2024-53043 was published Nov 19, 2024

A vulnerability, which was classified as critical, was found in code-projects Task Manager 1.0.... Moderate Unreviewed

CVE-2024-11096 was published Nov 12, 2024

The CTT Expresso para WooCommerce plugin for WordPress is vulnerable to sensitive information... Moderate Unreviewed

CVE-2024-6687 was published Aug 1, 2024

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: fix a... Moderate Unreviewed

CVE-2024-53069 was published Nov 19, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

108,934 advisories