Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,945
Erlang
29
GitHub Actions
16
Go
1,731
Maven
4,961
npm
3,493
NuGet
607
pip
3,059
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

219,694 advisories

Missing Authorization vulnerability in Vark Pricing Deals for WooCommerce.This issue affects... Moderate Unreviewed
CVE-2023-41240 was published Jun 12, 2024
The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to... Critical Unreviewed
CVE-2024-4898 was published Jun 12, 2024
The Download Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a user... Moderate Unreviewed
CVE-2024-1766 was published Jun 12, 2024
Missing Authorization vulnerability in weForms.This issue affects weForms: from n/a through 1.6.18. Moderate Unreviewed
CVE-2023-51524 was published Jun 12, 2024
The Newsletter - API v1 and v2 addon plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-5674 was published Jun 12, 2024
The Icegram Express plugin for WordPress is vulnerable to SQL Injection via the ‘options[list_id]... High Unreviewed
CVE-2024-4845 was published Jun 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Lim Kai Yang Grab & Save.This issue affects... Moderate Unreviewed
CVE-2023-47845 was published Jun 12, 2024
Missing Authorization vulnerability in Piotnet Forms.This issue affects Piotnet Forms: from n/a... Moderate Unreviewed
CVE-2023-51413 was published Jun 12, 2024
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-2092 was published Jun 12, 2024
The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-3492 was published Jun 12, 2024
Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map... Moderate Unreviewed
CVE-2023-44234 was published Jun 12, 2024
Missing Authorization vulnerability in Buy Me a Coffee.This issue affects Buy Me a Coffee: from n... Moderate Unreviewed
CVE-2023-25030 was published Jun 12, 2024
Missing Authorization vulnerability in Afzal Multani WP Clone Menu.This issue affects WP Clone... Moderate Unreviewed
CVE-2023-38395 was published Jun 12, 2024
Missing Authorization vulnerability in Himalaya Saxena Highcompress Image Compressor.This issue... Moderate Unreviewed
CVE-2023-40209 was published Jun 12, 2024
Missing Authorization vulnerability in Gangesh Matta Simple Org Chart.This issue affects Simple... Moderate Unreviewed
CVE-2023-40603 was published Jun 12, 2024
Missing Authorization vulnerability in Hardik Chavada Sticky Social Media Icons.This issue... Moderate Unreviewed
CVE-2023-40672 was published Jun 12, 2024
Missing Authorization vulnerability in Mandrill wpMandrill.This issue affects wpMandrill: from n... Moderate Unreviewed
CVE-2023-47828 was published Jun 12, 2024
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit... Moderate Unreviewed
CVE-2023-51671 was published Jun 12, 2024
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit... Moderate Unreviewed
CVE-2023-51670 was published Jun 12, 2024
Missing Authorization vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid: from... Moderate Unreviewed
CVE-2023-52117 was published Jun 12, 2024
Missing Authorization vulnerability in TechnoVama Quotes for WooCommerce.This issue affects... Moderate Unreviewed
CVE-2023-51680 was published Jun 12, 2024
Missing Authorization vulnerability in SoftLab Integrate Google Drive.This issue affects... Moderate Unreviewed
CVE-2023-52177 was published Jun 12, 2024
A vulnerability was found in GNU Nano that allows a possible privilege escalation through an... Moderate Unreviewed
CVE-2024-5742 was published Jun 12, 2024
Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects... Moderate Unreviewed
CVE-2023-51537 was published Jun 12, 2024
A vulnerability was found in FreeIPA in a way when a Kerberos TGS-REQ is encrypted using the... High Unreviewed
CVE-2024-3183 was published Jun 12, 2024
ProTip! Advisories are also available from the GraphQL API