GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,356

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

117,919 advisories

Filter by severity

Sort by

Least recently updated

The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-10900 was published Nov 20, 2024

Exposure of sensitive system information to an unauthorized control sphere issue exists in... Moderate Unreviewed

CVE-2024-52033 was published Nov 20, 2024

Missing authentication for critical function vulnerability exists in Rakuten Turbo 5G firmware... Moderate Unreviewed

CVE-2024-47865 was published Nov 20, 2024

The Booster for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed

CVE-2024-9239 was published Nov 20, 2024

The 404 Solution plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URLs in... Moderate Unreviewed

CVE-2024-11277 was published Nov 20, 2024

The MailChimp Forms by MailMunch plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2024-8726 was published Nov 20, 2024

The GD bbPress Attachments plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed

CVE-2024-11278 was published Nov 20, 2024

Use of hard-coded cryptographic key issue exists in "Kura Sushi Official App Produced by EPARK"... Moderate Unreviewed

CVE-2024-52614 was published Nov 20, 2024

The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-9653 was published Nov 20, 2024

A cookie management issue was addressed with improved state management. This issue is fixed in... Moderate Unreviewed

CVE-2024-44309 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-30424 was published Nov 20, 2024

Cross-Site Request Forgery (CSRF) vulnerability in W3speedster W3SPEEDSTER.This issue affects... Moderate Unreviewed

CVE-2024-52392 was published Nov 20, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Vivwebs Dynamic Widgets.This issue affects... Moderate Unreviewed

CVE-2024-51669 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2023-27609 was published Nov 20, 2024

In BnCameraService::onTransact of CameraService.cpp, there is a possible information disclosure... Moderate Unreviewed

CVE-2018-9420 was published Nov 20, 2024

In writeInplace of Parcel.cpp, there is a possible information leak across processes, using... Moderate Unreviewed

CVE-2018-9421 was published Nov 20, 2024

In parse of M3UParser.cpp there is a possible resource exhaustion due to improper input... Moderate Unreviewed

CVE-2018-9440 was published Nov 20, 2024

The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-11400 was published Nov 20, 2024

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 could allow an authenticated user to obtain... Moderate Unreviewed

CVE-2024-37070 was published Nov 19, 2024

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 could allow an authenticated user to... Moderate Unreviewed

CVE-2024-52359 was published Nov 19, 2024

A cross-site scripting (XSS) vulnerability in the component /master/header.php of Ganglia-web v3... Moderate Unreviewed

CVE-2024-52762 was published Nov 19, 2024

Uncontrolled resource consumption in some Zoom Apps before version 6.2.0 may allow an... Moderate Unreviewed

CVE-2024-45420 was published Nov 19, 2024

Improper input validation in some Zoom Apps before version 6.2.0 may allow an unauthenticated... Moderate Unreviewed

CVE-2024-45422 was published Nov 19, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-50430 was published Nov 19, 2024

In BnAudioPolicyService::onTransact of AudioPolicyService.cpp, there is a possible information... Moderate Unreviewed

CVE-2018-9346 was published Nov 19, 2024

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

117,919 advisories