Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,014
Maven
5,000+
npm
3,721
NuGet
662
pip
3,393
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

109,381 advisories

Loading
A vulnerability, which was classified as critical, was found in Campcodes Legal Case Management... Moderate Unreviewed
CVE-2024-4681 was published May 14, 2024
The Falang multilanguage for WordPress plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-4417 was published May 14, 2024
A vulnerability classified as problematic was found in Campcodes Complete Web-Based School... Moderate Unreviewed
CVE-2024-4672 was published May 14, 2024
The Blocksy Companion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG... Moderate Unreviewed
CVE-2024-4487 was published May 14, 2024
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to bypass to user... Moderate Unreviewed
CVE-2024-4444 was published May 14, 2024
A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and... Moderate Unreviewed
CVE-2024-4675 was published May 14, 2024
The Themify Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-4567 was published May 14, 2024
The Graphina – Elementor Charts and Graphs plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed
CVE-2024-4574 was published May 14, 2024
An issue has been discovered in GitLab EE affecting all versions from 16.7 before 16.9.7, all... Moderate Unreviewed
CVE-2024-4597 was published May 14, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has... Moderate Unreviewed
CVE-2024-4678 was published May 14, 2024
The Elegant Themes Divi theme, Extra theme, and Divi Page Builder plugin for WordPress are... Moderate Unreviewed
CVE-2024-4490 was published May 14, 2024
The Squelch Tabs and Accordions Shortcodes plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed
CVE-2024-4463 was published May 14, 2024
The Content Views – Post Grid & Filter, Recent Posts, Category Posts, & More (Gutenberg Blocks... Moderate Unreviewed
CVE-2024-4446 was published May 14, 2024
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce... Moderate Unreviewed
CVE-2024-4448 was published May 14, 2024
The Starter Templates — Elementor, WordPress & Beaver Builder Templates plugin for WordPress is... Moderate Unreviewed
CVE-2024-4630 was published May 14, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has... Moderate Unreviewed
CVE-2024-4677 was published May 14, 2024
The access control in CemiPark software stores integration (e.g. FTP or SIP) credentials in plain... Moderate Unreviewed
CVE-2024-4425 was published May 14, 2024
The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed
CVE-2024-4542 was published May 14, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 prior to... Moderate Unreviewed
CVE-2024-4539 was published May 14, 2024
The Blocksy theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tagName’... Moderate Unreviewed
CVE-2024-4158 was published May 14, 2024
The Shopping Cart & eCommerce Store plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2024-4213 was published May 14, 2024
The Soccer Engine – Soccer Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed
CVE-2024-4312 was published May 14, 2024
The Simple Basic Contact Form plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed
CVE-2024-4150 was published May 14, 2024
The Joli FAQ SEO – WordPress FAQ Plugin plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed
CVE-2024-4082 was published May 14, 2024
The White Label CMS plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2024-4280 was published May 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database