GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,384 advisories
Filter by severity
The Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms...
Moderate
Unreviewed
CVE-2024-5857
was published
Aug 29, 2024
A vulnerability in Cisco NX-OS Software could allow an authenticated, local attacker with...
Moderate
Unreviewed
CVE-2024-20413
was published
Aug 28, 2024
The Permalink Manager Lite plugin for WordPress is vulnerable to unauthorized access of data due...
Moderate
Unreviewed
CVE-2024-8195
was published
Aug 28, 2024
The Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms...
Moderate
Unreviewed
CVE-2024-7447
was published
Aug 28, 2024
The Reviews Feed – Add Testimonials and Customer Reviews From Google Reviews, Yelp, TripAdvisor,...
Moderate
Unreviewed
CVE-2024-8199
was published
Aug 27, 2024
The Oxygen Builder plugin for WordPress is vulnerable to unauthorized modification of data due to...
Moderate
Unreviewed
CVE-2024-6688
was published
Aug 27, 2024
Missing Authorization vulnerability in myCred.This issue affects myCred: from n/a through 2.7.2.
Moderate
Unreviewed
CVE-2024-43214
was published
Aug 26, 2024
The ImageRecycle pdf & image compression plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-6631
was published
Aug 24, 2024
Missing Authorization vulnerability in VeronaLabs WP SMS.This issue affects WP SMS: from n/a...
Moderate
Unreviewed
CVE-2024-43331
was published
Aug 22, 2024
The Smart Online Order for Clover plugin for WordPress is vulnerable to unauthorized loss of data...
Moderate
Unreviewed
CVE-2024-7032
was published
Aug 21, 2024
The Smart Online Order for Clover plugin for WordPress is vulnerable to unauthorized modification...
Moderate
Unreviewed
CVE-2024-7030
was published
Aug 21, 2024
The WP Testimonial Widget plugin for WordPress is vulnerable to unauthorized modification of data...
Moderate
Unreviewed
CVE-2024-7390
was published
Aug 21, 2024
The Event Espresso 4 Decaf – Event Registration Event Ticketing plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-6883
was published
Aug 21, 2024
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-5940
was published
Aug 20, 2024
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-5939
was published
Aug 20, 2024
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-5941
was published
Aug 20, 2024
Missing Authorization vulnerability in Jamie Bergen Plugin Notes Plus allows Accessing...
Moderate
Unreviewed
CVE-2024-43326
was published
Aug 19, 2024
Missing Authorization vulnerability in Automattic Sensei LMS, Automattic Sensei Pro (WC Paid...
Moderate
Unreviewed
CVE-2024-35686
was published
Aug 19, 2024
The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a...
Moderate
Unreviewed
CVE-2023-4027
was published
Aug 17, 2024
The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a...
Moderate
Unreviewed
CVE-2023-4024
was published
Aug 17, 2024
The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a...
Moderate
Unreviewed
CVE-2023-4025
was published
Aug 17, 2024
The LadiApp plugn for WordPress is vulnerable to unauthorized modification of data due to a...
Moderate
Unreviewed
CVE-2023-4730
was published
Aug 17, 2024
Missing Authorization vulnerability in Igor Benić Recipe Maker For Your Food Blog from Zip...
Moderate
Unreviewed
CVE-2024-38688
was published
Aug 13, 2024
Due to missing authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform, an...
Moderate
Unreviewed
CVE-2024-41734
was published
Aug 13, 2024
SAP shared service framework allows an
authenticated non-administrative user to call a remote...
Moderate
Unreviewed
CVE-2024-42377
was published
Aug 13, 2024
ProTip!
Advisories are also available from the
GraphQL API