GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,587
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,988
Maven 5,170
npm 3,704
NuGet 661
pip 3,332
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,200

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

108,238 advisories

Filter by severity

Sort by

Least recently updated

Cross-site scripting vulnerability exists in FitNesse releases prior to 20241026. If this... Moderate Unreviewed

CVE-2024-39610 was published Nov 15, 2024

The Music Player for Elementor – Audio Player & Podcast Player plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-10582 was published Nov 15, 2024

The WP AdCenter – Ad Manager & Adsense Ads plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-10113 was published Nov 15, 2024

The Yotpo: Product & Photo Reviews for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-9356 was published Nov 15, 2024

Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in... Moderate Unreviewed

CVE-2024-42499 was published Nov 15, 2024

The LearnPress Export Import – WordPress extension for LearnPress plugin for WordPress is... Moderate Unreviewed

CVE-2024-9609 was published Nov 15, 2024

The Tutor LMS Elementor Addons plugin for WordPress is vulnerable to unauthorized plugin... Moderate Unreviewed

CVE-2024-10897 was published Nov 15, 2024

An issue was discovered on HMS Anybus X-Gateway AB7832-F 3 devices. The gateway exposes an... Moderate Unreviewed

CVE-2024-23765 was published Jun 26, 2024

In ProtocolPsKeepAliveStatusAdapter::getCode() of protocolpsadapter.cpp, there is a possible out... Moderate Unreviewed

CVE-2024-27230 was published Mar 11, 2024

NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attack... Moderate Unreviewed

CVE-2023-5388 was published Mar 19, 2024

FusionPBX before 5.2.0 does not validate a session. Moderate Unreviewed

CVE-2024-24539 was published Mar 18, 2024

The Simple File List WordPress plugin before 6.1.13 does not sanitise and escape a generated URL... Moderate Unreviewed

CVE-2024-10146 was published Nov 14, 2024

A Stored Cross-Site Scripting (XSS) vulnerability was found in /lms/admin/add_subject.php page in... Moderate Unreviewed

CVE-2024-50839 was published Nov 14, 2024

A Stored Cross-Site Scripting (XSS) vulnerability was found in /lms/admin/department.php in... Moderate Unreviewed

CVE-2024-50838 was published Nov 14, 2024

A Stored Cross-Site Scripting (XSS) vulnerability was found in /lms/admin/class.php in KASHIPARA... Moderate Unreviewed

CVE-2024-50840 was published Nov 14, 2024

A Stored Cross-Site Scripting (XSS) vulnerability was found in /lms/admin/school_year.php of... Moderate Unreviewed

CVE-2024-50842 was published Nov 14, 2024

A Directory listing issue was found in PHPGurukul User Registration & Login and User Management... Moderate Unreviewed

CVE-2024-50843 was published Nov 14, 2024

libcurl skips the certificate verification for a QUIC connection under certain conditions, when... Moderate Unreviewed

CVE-2024-2379 was published Mar 27, 2024

Open Redirect vulnerability in Corezoid Process Engine v6.5.0 allows attackers to redirect to... Moderate Unreviewed

CVE-2024-27592 was published Apr 11, 2024

A vulnerability, which was classified as critical, was found in code-projects Job Recruitment 1.0... Moderate Unreviewed

CVE-2024-11077 was published Nov 11, 2024

A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0.... Moderate Unreviewed

CVE-2024-11074 was published Nov 11, 2024

A vulnerability, which was classified as critical, has been found in code-projects Job... Moderate Unreviewed

CVE-2024-11076 was published Nov 11, 2024

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique... Moderate Unreviewed

CVE-2022-21958 was published Jan 12, 2022

Microsoft Edge for Android Spoofing Vulnerability. Moderate Unreviewed

CVE-2022-23258 was published Jan 26, 2022

A cross-site scripting (XSS) vulnerability in Pkp Ojs v3.3 allows attackers to execute arbitrary... Moderate Unreviewed

CVE-2024-25434 was published Mar 2, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

108,238 advisories