GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,131
Erlang
29
GitHub Actions
19
Go
1,937
Maven
5,000+
npm
3,676
NuGet
642
pip
3,292
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
105,644 advisories
Filter by severity
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-49266
was published
Oct 16, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-49267
was published
Oct 16, 2024
A stored cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IQ...
Moderate
Unreviewed
CVE-2024-47139
was published
Oct 16, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-49270
was published
Oct 16, 2024
Path Traversal: '.../...//' vulnerability in Limb WordPress Gallery Plugin – Limb Image Gallery...
Moderate
Unreviewed
CVE-2024-49258
was published
Oct 16, 2024
The WooCommerce Smart Coupons plugin for WordPress is vulnerable to authorization bypass due to a...
Moderate
Unreviewed
CVE-2020-36841
was published
Oct 16, 2024
Attackers could put the special files in .osc into the actual package sources (e.g. _apiurl)....
Moderate
Unreviewed
CVE-2024-22034
was published
Oct 16, 2024
Insecure handling of ssh keys used to bootstrap clients allows local attackers to potentially...
Moderate
Unreviewed
CVE-2023-32189
was published
Oct 16, 2024
A vulnerability, which was classified as critical, has been found in code-projects Pharmacy...
Moderate
Unreviewed
CVE-2024-10024
was published
Oct 16, 2024
A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0....
Moderate
Unreviewed
CVE-2024-10023
was published
Oct 16, 2024
The OBS service obs-service-download_url was vulnerable to a command injection vulnerability. The...
Moderate
Unreviewed
CVE-2024-22033
was published
Oct 16, 2024
: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2024-49252
was published
Oct 16, 2024
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-10021
was published
Oct 16, 2024
The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-9444
was published
Oct 16, 2024
The Zita Elementor Site Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
Moderate
Unreviewed
CVE-2024-8921
was published
Oct 16, 2024
A vulnerability classified as critical has been found in code-projects Pharmacy Management System...
Moderate
Unreviewed
CVE-2024-10022
was published
Oct 16, 2024
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to...
Moderate
Unreviewed
CVE-2022-4974
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7289
was published
Oct 16, 2024
The Accordion Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ...
Moderate
Unreviewed
CVE-2024-9582
was published
Oct 16, 2024
WordPress Core, in versions up to 6.0.2, is vulnerable to Authenticated Stored Cross-Site...
Moderate
Unreviewed
CVE-2022-4973
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7292
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7287
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7293
was published
Oct 16, 2024
The NinjaFirewall plugin for WordPress is vulnerable to Authenticated PHAR Deserialization in...
Moderate
Unreviewed
CVE-2021-4451
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7288
was published
Oct 16, 2024
ProTip!
Advisories are also available from the
GraphQL API