GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
924 advisories
Filter by severity
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager...
High
Unreviewed
CVE-2024-41913
was published
Aug 6, 2024
The Blox Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing...
High
Unreviewed
CVE-2024-6315
was published
Aug 6, 2024
The CRM Perks Forms plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-7484
was published
Aug 6, 2024
The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-6431
was published
Jul 27, 2024
An arbitrary file upload vulnerability in Webkul Qloapps v1.6.0.0 allows attackers to execute...
High
Unreviewed
CVE-2024-40318
was published
Jul 25, 2024
The Social Auto Poster plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-6756
was published
Jul 24, 2024
The Redux Framework plugin for WordPress is vulnerable to unauthenticated JSON file uploads due...
High
Unreviewed
CVE-2024-6828
was published
Jul 23, 2024
The Brizy – Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-3242
was published
Jul 18, 2024
The Insert or Embed Articulate Content into WordPress plugin before 4.3000000024 does not prevent...
High
Unreviewed
CVE-2024-5630
was published
Jul 15, 2024
An arbitrary file upload vulnerability in the component /admin/cmsTemplate/savePlace of PublicCMS...
High
Unreviewed
CVE-2024-40549
was published
Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsTemplate/save of PublicCMS v4.0...
High
Unreviewed
CVE-2024-40548
was published
Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsTemplate/doUpload of PublicCMS...
High
Unreviewed
CVE-2024-40551
was published
Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsTemplate/savePlaceMetaData of...
High
Unreviewed
CVE-2024-40550
was published
Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsWebFile/doUpload of PublicCMS...
High
Unreviewed
CVE-2024-40545
was published
Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsWebFile/save of PublicCMS v4.0...
High
Unreviewed
CVE-2024-40546
was published
Jul 12, 2024
An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an...
High
Unreviewed
CVE-2024-5911
was published
Jul 10, 2024
The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to arbitrary file uploads...
High
Unreviewed
CVE-2023-7061
was published
Jul 10, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1)....
High
Unreviewed
CVE-2024-39865
was published
Jul 9, 2024
The Bit Form plugin for WordPress is vulnerable to arbitrary file uploads due to missing file...
High
Unreviewed
CVE-2024-6123
was published
Jul 9, 2024
The Modern Events Calendar plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-5441
was published
Jul 9, 2024
OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory,...
High
Unreviewed
CVE-2024-27903
was published
Jul 8, 2024
The IMGspider plugin for WordPress is vulnerable to arbitrary file uploads due to missing file...
High
Unreviewed
CVE-2024-6319
was published
Jul 4, 2024
The IMGspider plugin for WordPress is vulnerable to arbitrary file uploads due to missing file...
High
Unreviewed
CVE-2024-6318
was published
Jul 4, 2024
CHANGING Mobile One Time Password's uploading function in a hidden page does not filter file type...
High
Unreviewed
CVE-2024-3123
was published
Jul 1, 2024
A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and...
High
Unreviewed
CVE-2024-6373
was published
Jun 27, 2024
ProTip!
Advisories are also available from the
GraphQL API