GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,253
Erlang
31
GitHub Actions
21
Go
2,018
Maven
5,000+
npm
3,725
NuGet
662
pip
3,402
Pub
12
RubyGems
890
Rust
861
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
236,623 advisories
Filter by severity
The Gallery plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and...
High
Unreviewed
CVE-2024-11501
was published
Dec 7, 2024
The Smoove connector for Elementor forms plugin for WordPress is vulnerable to Reflected Cross...
Moderate
Unreviewed
CVE-2024-11367
was published
Dec 7, 2024
The TWChat – Send or receive messages from users plugin for WordPress is vulnerable to Reflected...
Moderate
Unreviewed
CVE-2024-11374
was published
Dec 7, 2024
The Mini Program API plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-11380
was published
Dec 7, 2024
The Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-12128
was published
Dec 7, 2024
The Beautiful taxonomy filters plugin for WordPress is vulnerable to SQL Injection via the ...
High
Unreviewed
CVE-2024-12270
was published
Dec 7, 2024
The Easy Code Snippets plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-11464
was published
Dec 7, 2024
The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-11010
was published
Dec 7, 2024
The Feedpress Generator – External RSS Frontend Customizer plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11457
was published
Dec 7, 2024
The Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-12253
was published
Dec 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
fsnotify: Fix ordering of...
Unknown
Unreviewed
CVE-2024-53143
was published
Dec 7, 2024
The Simple Side Tab WordPress plugin before 2.2.0 does not sanitise and escape some of its...
Unknown
Unreviewed
CVE-2024-11183
was published
Dec 7, 2024
An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4,...
High
Unreviewed
CVE-2024-23280
was published
Mar 8, 2024
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sonoma...
High
Unreviewed
CVE-2024-23285
was published
Mar 8, 2024
The 워드프레스 결제 심플페이 – 우커머스 결제 플러그인 plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-11943
was published
Dec 7, 2024
The If Menu plugin for WordPress is vulnerable to unauthorized modification of the plugin's...
Moderate
Unreviewed
CVE-2024-7894
was published
Dec 7, 2024
The Shortcodes Blocks Creator Ultimate plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-12166
was published
Dec 7, 2024
The Mollie for Contact Form 7 plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-12165
was published
Dec 7, 2024
The SMS for Lead Capture Forms plugin for WordPress is vulnerable to unauthorized modification of...
Moderate
Unreviewed
CVE-2024-11353
was published
Dec 7, 2024
The Shortcodes Blocks Creator Ultimate plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-12167
was published
Dec 7, 2024
The 코드엠샵 소셜톡 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ...
Moderate
Unreviewed
CVE-2024-11904
was published
Dec 7, 2024
The Comfino Payment Gateway plugin for WordPress is vulnerable to Reflected Cross-Site Scripting...
Moderate
Unreviewed
CVE-2024-11329
was published
Dec 7, 2024
The افزونه پیامک ووکامرس Persian WooCommerce SMS plugin for WordPress is vulnerable to Reflected...
Moderate
Unreviewed
CVE-2024-10046
was published
Dec 7, 2024
The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-12115
was published
Dec 7, 2024
The Message Filter for Contact Form 7 plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-12026
was published
Dec 7, 2024
ProTip!
Advisories are also available from the
GraphQL API