Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,263
Erlang
31
GitHub Actions
21
Go
2,033
Maven
5,000+
npm
3,732
NuGet
662
pip
3,411
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,881 advisories

Loading
The WP Crowdfunding plugin for WordPress is vulnerable to unauthorized plugin installation due to... Moderate Unreviewed
CVE-2024-11911 was published Dec 13, 2024
The Hash Form – Drag & Drop Form Builder plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-12201 was published Dec 12, 2024
The Cookie Consent for WP – Cookie Consent, Consent Log, Cookie Scanner, Script Blocker (for GDPR... Moderate Unreviewed
CVE-2024-11724 was published Dec 12, 2024
The Snippet Shortcodes plugin for WordPress is vulnerable to unauthorized Shortcode Deletion due... Moderate Unreviewed
CVE-2024-12018 was published Dec 12, 2024
The Web3 Crypto Payments by DePay for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-12265 was published Dec 12, 2024
The Child Theme Creator by Orbisius plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-12263 was published Dec 12, 2024
The AI Post Generator | AutoWriter plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-11709 was published Dec 12, 2024
The Custom Skins Contact Form 7 plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed
CVE-2024-12341 was published Dec 12, 2024
An authorization issue was addressed with improved state management. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-54466 was published Dec 12, 2024
Rapid7 Insight Platform versions prior to November 13th 2024, suffer from a privilege escalation... Moderate Unreviewed
CVE-2024-11401 was published Dec 11, 2024
Missing Authorization vulnerability in Ninja Team Notibar allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2024-54269 was published Dec 11, 2024
SAP HCM Approve Timesheets Version 4 application does not perform necessary authorization checks... Moderate Unreviewed
CVE-2024-47581 was published Dec 10, 2024
SAP NetWeaver Application Server for ABAP and ABAP Platform allows an authenticated attacker to... Moderate Unreviewed
CVE-2024-47585 was published Dec 10, 2024
Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper access... Moderate Unreviewed
CVE-2024-45760 was published Dec 9, 2024
Missing Authorization vulnerability in ProfilePress Membership Team ProfilePress.This issue... Moderate Unreviewed
CVE-2023-41953 was published Dec 9, 2024
Missing Authorization vulnerability in Thehp AIO Contact.This issue affects AIO Contact: from n/a... Moderate Unreviewed
CVE-2024-54218 was published Dec 9, 2024
Missing Authorization vulnerability in Prodigy Commerce Prodigy Commerce allows Exploiting... Moderate Unreviewed
CVE-2024-54251 was published Dec 9, 2024
Missing Authorization vulnerability in theDotstore Minimum and Maximum Quantity for WooCommerce... Moderate Unreviewed
CVE-2024-54227 was published Dec 9, 2024
Missing Authorization vulnerability in Kofi Mokome Message Filter for Contact Form 7.This issue... Moderate Unreviewed
CVE-2024-54254 was published Dec 9, 2024
Missing Authorization vulnerability in Genetech Pie Register Premium.This issue affects Pie... Moderate Unreviewed
CVE-2024-52391 was published Dec 9, 2024
Missing Authorization vulnerability in Astoundify Jobify - Job Board WordPress Theme.This issue... Moderate Unreviewed
CVE-2024-52480 was published Dec 9, 2024
Missing Authorization vulnerability in Themewinter Eventin allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2023-49756 was published Dec 9, 2024
Missing Authorization vulnerability in Pixelite Login With Ajax allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2023-49859 was published Dec 9, 2024
Missing Authorization vulnerability in ILMDESIGNS Square Thumbnails allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2023-49851 was published Dec 9, 2024
Missing Authorization vulnerability in Paul Ryley Site Reviews allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2023-49832 was published Dec 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database