GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,413

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

107,803 advisories

Filter by severity

Sort by

Least recently updated

The Simple Buttons Creator WordPress plugin through 1.04 does not have CSRF checks in some places... Moderate Unreviewed

CVE-2024-2858 was published Apr 15, 2024

The WooCommerce WordPress plugin before 8.6 does not prevent users with at least the contributor... Moderate Unreviewed

CVE-2024-1310 was published Apr 15, 2024

The Testimonial Slider WordPress plugin before 2.3.8 does not sanitise and escape some of its... Moderate Unreviewed

CVE-2024-1746 was published Apr 15, 2024

aEnrich Technology a+HRD's functionality for downloading files using youtube-dl.exe does not... Moderate Unreviewed

CVE-2024-3775 was published Apr 15, 2024

The parameter used in the login page of Netvision airPASS is not properly filtered for user input... Moderate Unreviewed

CVE-2024-3776 was published Apr 15, 2024

A vulnerability classified as critical was found in PHPGurukul News Portal 4.1. This... Moderate Unreviewed

CVE-2024-3767 was published Apr 15, 2024

A vulnerability, which was classified as critical, has been found in PHPGurukul News Portal 4.1.... Moderate Unreviewed

CVE-2024-3768 was published Apr 15, 2024

The Smart Forms WordPress plugin before 2.6.94 does not have proper authorization in some... Moderate Unreviewed

CVE-2024-1307 was published Apr 15, 2024

The Everest Backup WordPress plugin before 2.2.5 does not properly validate backup files to be... Moderate Unreviewed

CVE-2023-7201 was published Apr 15, 2024

The Smart Forms WordPress plugin before 2.6.94 does not have CSRF checks in some places, which... Moderate Unreviewed

CVE-2024-1306 was published Apr 15, 2024

The Top Bar WordPress plugin before 3.0.5 does not sanitise and escape some of its settings,... Moderate Unreviewed

CVE-2024-1660 was published Apr 15, 2024

The Meta Box WordPress plugin before 5.9.4 does not prevent users with at least the contributor... Moderate Unreviewed

CVE-2024-1204 was published Apr 15, 2024

The WP User Profile Avatar WordPress plugin through 1.0.1 does not validate and escape some of... Moderate Unreviewed

CVE-2023-6067 was published Apr 15, 2024

The WP Customer Reviews WordPress plugin before 3.7.1 does not validate a parameter allowing... Moderate Unreviewed

CVE-2024-1849 was published Apr 15, 2024

aEnrich Technology a+HRD's functionality for front-end retrieval of system configuration values... Moderate Unreviewed

CVE-2024-3774 was published Apr 15, 2024

A vulnerability classified as problematic has been found in Tuya Camera 3.2.9. Affected is an... Moderate Unreviewed

CVE-2024-3764 was published Apr 15, 2024

In function pci1xxxx_spi_probe, there is a potential null pointer that may be caused by a failed... Moderate Unreviewed

CVE-2024-24862 was published Apr 14, 2024

In malidp_mw_connector_reset, new memory is allocated with kzalloc, but no check is performed.... Moderate Unreviewed

CVE-2024-24863 was published Apr 14, 2024

A vulnerability classified as critical was found in cym1102 nginxWebUI up to 3.9.9. This... Moderate Unreviewed

CVE-2024-3739 was published Apr 13, 2024

A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI up to 3.9... Moderate Unreviewed

CVE-2024-3740 was published Apr 13, 2024

A vulnerability was found in cym1102 nginxWebUI up to 3.9.9. It has been rated as critical.... Moderate Unreviewed

CVE-2024-3737 was published Apr 13, 2024

A vulnerability was found in cym1102 nginxWebUI up to 3.9.9. It has been declared as problematic.... Moderate Unreviewed

CVE-2024-3736 was published Apr 13, 2024

A vulnerability was found in TBK DVR-4104 and DVR-4216 up to 20240412 and classified as critical.... Moderate Unreviewed

CVE-2024-3721 was published Apr 13, 2024

A vulnerability has been found in Tianwell Fire Intelligent Command Platform 1.1.1.1 and... Moderate Unreviewed

CVE-2024-3720 was published Apr 13, 2024

A vulnerability, which was classified as critical, was found in Campcodes House Rental Management... Moderate Unreviewed

CVE-2024-3719 was published Apr 13, 2024

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

107,803 advisories