GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,945
Erlang
29
GitHub Actions
16
Go
1,731
Maven
4,961
npm
3,493
NuGet
607
pip
3,059
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
108,261 advisories
Filter by severity
Missing Authorization vulnerability in Vark Pricing Deals for WooCommerce.This issue affects...
Moderate
Unreviewed
CVE-2023-41240
was published
Jun 12, 2024
The Download Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a user...
Moderate
Unreviewed
CVE-2024-1766
was published
Jun 12, 2024
Missing Authorization vulnerability in weForms.This issue affects weForms: from n/a through 1.6.18.
Moderate
Unreviewed
CVE-2023-51524
was published
Jun 12, 2024
The Newsletter - API v1 and v2 addon plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-5674
was published
Jun 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Lim Kai Yang Grab & Save.This issue affects...
Moderate
Unreviewed
CVE-2023-47845
was published
Jun 12, 2024
Missing Authorization vulnerability in Piotnet Forms.This issue affects Piotnet Forms: from n/a...
Moderate
Unreviewed
CVE-2023-51413
was published
Jun 12, 2024
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
Moderate
Unreviewed
CVE-2024-2092
was published
Jun 12, 2024
The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-3492
was published
Jun 12, 2024
Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map...
Moderate
Unreviewed
CVE-2023-44234
was published
Jun 12, 2024
Missing Authorization vulnerability in Buy Me a Coffee.This issue affects Buy Me a Coffee: from n...
Moderate
Unreviewed
CVE-2023-25030
was published
Jun 12, 2024
Missing Authorization vulnerability in Afzal Multani WP Clone Menu.This issue affects WP Clone...
Moderate
Unreviewed
CVE-2023-38395
was published
Jun 12, 2024
Missing Authorization vulnerability in Himalaya Saxena Highcompress Image Compressor.This issue...
Moderate
Unreviewed
CVE-2023-40209
was published
Jun 12, 2024
Missing Authorization vulnerability in Gangesh Matta Simple Org Chart.This issue affects Simple...
Moderate
Unreviewed
CVE-2023-40603
was published
Jun 12, 2024
Missing Authorization vulnerability in Hardik Chavada Sticky Social Media Icons.This issue...
Moderate
Unreviewed
CVE-2023-40672
was published
Jun 12, 2024
Missing Authorization vulnerability in Mandrill wpMandrill.This issue affects wpMandrill: from n...
Moderate
Unreviewed
CVE-2023-47828
was published
Jun 12, 2024
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit...
Moderate
Unreviewed
CVE-2023-51671
was published
Jun 12, 2024
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit...
Moderate
Unreviewed
CVE-2023-51670
was published
Jun 12, 2024
Missing Authorization vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid: from...
Moderate
Unreviewed
CVE-2023-52117
was published
Jun 12, 2024
Missing Authorization vulnerability in TechnoVama Quotes for WooCommerce.This issue affects...
Moderate
Unreviewed
CVE-2023-51680
was published
Jun 12, 2024
Missing Authorization vulnerability in SoftLab Integrate Google Drive.This issue affects...
Moderate
Unreviewed
CVE-2023-52177
was published
Jun 12, 2024
A vulnerability was found in GNU Nano that allows a possible privilege escalation through an...
Moderate
Unreviewed
CVE-2024-5742
was published
Jun 12, 2024
Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects...
Moderate
Unreviewed
CVE-2023-51537
was published
Jun 12, 2024
Missing Authorization vulnerability in Brett Shumaker Simple Staff List.This issue affects Simple...
Moderate
Unreviewed
CVE-2023-51526
was published
Jun 12, 2024
The WordPress Header Builder Plugin – Pearl plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-5468
was published
Jun 12, 2024
Missing Authorization vulnerability in BulkGate BulkGate SMS Plugin for WooCommerce.This issue...
Moderate
Unreviewed
CVE-2023-51679
was published
Jun 12, 2024
ProTip!
Advisories are also available from the
GraphQL API