Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,384 advisories

Loading
The Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms... Moderate Unreviewed
CVE-2024-5857 was published Aug 29, 2024
A vulnerability in Cisco NX-OS Software could allow an authenticated, local attacker with... Moderate Unreviewed
CVE-2024-20413 was published Aug 28, 2024
The Permalink Manager Lite plugin for WordPress is vulnerable to unauthorized access of data due... Moderate Unreviewed
CVE-2024-8195 was published Aug 28, 2024
The Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms... Moderate Unreviewed
CVE-2024-7447 was published Aug 28, 2024
The Reviews Feed – Add Testimonials and Customer Reviews From Google Reviews, Yelp, TripAdvisor,... Moderate Unreviewed
CVE-2024-8199 was published Aug 27, 2024
The Oxygen Builder plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed
CVE-2024-6688 was published Aug 27, 2024
Missing Authorization vulnerability in myCred.This issue affects myCred: from n/a through 2.7.2. Moderate Unreviewed
CVE-2024-43214 was published Aug 26, 2024
The ImageRecycle pdf & image compression plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-6631 was published Aug 24, 2024
Missing Authorization vulnerability in VeronaLabs WP SMS.This issue affects WP SMS: from n/a... Moderate Unreviewed
CVE-2024-43331 was published Aug 22, 2024
The Smart Online Order for Clover plugin for WordPress is vulnerable to unauthorized loss of data... Moderate Unreviewed
CVE-2024-7032 was published Aug 21, 2024
The Smart Online Order for Clover plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed
CVE-2024-7030 was published Aug 21, 2024
The WP Testimonial Widget plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed
CVE-2024-7390 was published Aug 21, 2024
The Event Espresso 4 Decaf – Event Registration Event Ticketing plugin for WordPress is... Moderate Unreviewed
CVE-2024-6883 was published Aug 21, 2024
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-5940 was published Aug 20, 2024
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-5939 was published Aug 20, 2024
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-5941 was published Aug 20, 2024
Missing Authorization vulnerability in Jamie Bergen Plugin Notes Plus allows Accessing... Moderate Unreviewed
CVE-2024-43326 was published Aug 19, 2024
Missing Authorization vulnerability in Automattic Sensei LMS, Automattic Sensei Pro (WC Paid... Moderate Unreviewed
CVE-2024-35686 was published Aug 19, 2024
The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed
CVE-2023-4027 was published Aug 17, 2024
The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed
CVE-2023-4024 was published Aug 17, 2024
The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed
CVE-2023-4025 was published Aug 17, 2024
The LadiApp plugn for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed
CVE-2023-4730 was published Aug 17, 2024
Missing Authorization vulnerability in Igor Benić Recipe Maker For Your Food Blog from Zip... Moderate Unreviewed
CVE-2024-38688 was published Aug 13, 2024
Due to missing authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform, an... Moderate Unreviewed
CVE-2024-41734 was published Aug 13, 2024
SAP shared service framework allows an authenticated non-administrative user to call a remote... Moderate Unreviewed
CVE-2024-42377 was published Aug 13, 2024
ProTip! Advisories are also available from the GraphQL API