GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,131
Erlang
29
GitHub Actions
19
Go
1,936
Maven
5,000+
npm
3,671
NuGet
642
pip
3,288
Pub
10
RubyGems
873
Rust
828
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,636 advisories
Filter by severity
In Splunk Enterprise versions below 9.3.1, and 9.2.0 versions below 9.2.3, and Splunk Cloud...
High
Unreviewed
CVE-2024-45732
was published
Oct 14, 2024
The Order Attachments for WooCommerce plugin for WordPress is vulnerable to unauthorized limited...
Moderate
Unreviewed
CVE-2024-9756
was published
Oct 12, 2024
The Read more By Adam plugin for WordPress is vulnerable to unauthorized loss of data due to a...
Moderate
Unreviewed
CVE-2024-9187
was published
Oct 12, 2024
The ImagePress – Image Gallery plugin for WordPress is vulnerable to unauthorized modification...
Moderate
Unreviewed
CVE-2024-9824
was published
Oct 12, 2024
The Bridge Core plugin for WordPress is vulnerable to unauthorized modification of data or loss...
Moderate
Unreviewed
CVE-2024-9860
was published
Oct 12, 2024
The Linkz.ai plugin for WordPress is vulnerable to unauthorized modification of data due to a...
Moderate
Unreviewed
CVE-2024-9586
was published
Oct 11, 2024
The Linkz.ai plugin for WordPress is vulnerable to unauthorized modification of data due to a...
Moderate
Unreviewed
CVE-2024-9587
was published
Oct 11, 2024
The Hunk Companion plugin for WordPress is vulnerable to unauthorized plugin installation...
Critical
Unreviewed
CVE-2024-9707
was published
Oct 11, 2024
The GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor plugin for...
Critical
Unreviewed
CVE-2024-9234
was published
Oct 11, 2024
In JetBrains YouTrack before 2024.3.46677 improper access control allowed users with project...
Moderate
Unreviewed
CVE-2024-48902
was published
Oct 10, 2024
The UserPlus plugin for WordPress is vulnerable to unauthorized access, modification, and loss of...
Moderate
Unreviewed
CVE-2024-9520
was published
Oct 10, 2024
The Notification for Telegram plugin for WordPress is vulnerable to unauthorized test message...
Moderate
Unreviewed
CVE-2024-9685
was published
Oct 10, 2024
The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for...
Moderate
Unreviewed
CVE-2024-9067
was published
Oct 10, 2024
The WP Helper Premium plugin for WordPress is vulnerable to unauthorized modification of data due...
Moderate
Unreviewed
CVE-2024-9065
was published
Oct 10, 2024
The QA Analytics – Web Analytics Tool with Heatmaps & Session Replay Across All Pages plugin for...
Moderate
Unreviewed
CVE-2024-8513
was published
Oct 10, 2024
Azure Stack Hyperconverged Infrastructure (HCI) Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38179
was published
Oct 8, 2024
The Photo Gallery, Images, Slider in Rbs Image Gallery plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-8431
was published
Oct 8, 2024
The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-9161
was published
Oct 5, 2024
** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in D3D Security IP Camera due to usage...
High
Unreviewed
CVE-2024-47790
was published
Oct 4, 2024
A vulnerability in the REST API endpoints of Cisco Nexus Dashboard could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20442
was published
Oct 2, 2024
A vulnerability in the REST API endpoints of Cisco NDFC could allow an authenticated, low...
Moderate
Unreviewed
CVE-2024-20438
was published
Oct 2, 2024
A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low...
Moderate
Unreviewed
CVE-2024-20477
was published
Oct 2, 2024
The Spice Starter Sites plugin for WordPress is vulnerable to unauthorized modification of data...
Moderate
Unreviewed
CVE-2024-8430
was published
Oct 1, 2024
The KB Support – WordPress Help Desk and Knowledge Base plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-8632
was published
Oct 1, 2024
The Soumettre.fr plugin for WordPress is vulnerable to unauthorized modification of data due to a...
Moderate
Unreviewed
CVE-2024-8675
was published
Oct 1, 2024
ProTip!
Advisories are also available from the
GraphQL API