GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,253
Erlang
31
GitHub Actions
21
Go
2,018
Maven
5,000+
npm
3,725
NuGet
662
pip
3,402
Pub
12
RubyGems
890
Rust
861
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
236,630 advisories
Filter by severity
A vulnerability was found in TP-Link VN020 F3v(T) TT_V6.2.1021. It has been rated as critical....
High
Unreviewed
CVE-2024-12342
was published
Dec 8, 2024
The WP Umbrella: Update Backup Restore & Monitoring plugin for WordPress is vulnerable to Local...
Critical
Unreviewed
CVE-2024-12209
was published
Dec 8, 2024
WeGIA 3.2.0 before 3998672 does not verify permission to change a password.
Unknown
Unreviewed
CVE-2024-53473
was published
Dec 8, 2024
A buffer overflow can occur when calculating the quantile value using the Statistics Library of...
Moderate
Unreviewed
CVE-2020-35357
was published
Aug 22, 2023
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is...
Moderate
Unreviewed
CVE-2024-41762
was published
Dec 7, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could...
Moderate
Unreviewed
CVE-2024-37071
was published
Dec 7, 2024
IBM QRadar SIEM 7.5 is vulnerable to stored cross-site scripting. This vulnerability allows...
Moderate
Unreviewed
CVE-2024-47107
was published
Dec 7, 2024
IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1 could allow a local user to execute arbitrary commands on...
High
Unreviewed
CVE-2024-47115
was published
Dec 7, 2024
The Gallery plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and...
High
Unreviewed
CVE-2024-11501
was published
Dec 7, 2024
The Smoove connector for Elementor forms plugin for WordPress is vulnerable to Reflected Cross...
Moderate
Unreviewed
CVE-2024-11367
was published
Dec 7, 2024
The TWChat – Send or receive messages from users plugin for WordPress is vulnerable to Reflected...
Moderate
Unreviewed
CVE-2024-11374
was published
Dec 7, 2024
The Mini Program API plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-11380
was published
Dec 7, 2024
The Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-12128
was published
Dec 7, 2024
The Beautiful taxonomy filters plugin for WordPress is vulnerable to SQL Injection via the ...
High
Unreviewed
CVE-2024-12270
was published
Dec 7, 2024
The Easy Code Snippets plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-11464
was published
Dec 7, 2024
The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-11010
was published
Dec 7, 2024
The Feedpress Generator – External RSS Frontend Customizer plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11457
was published
Dec 7, 2024
The Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-12253
was published
Dec 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
fsnotify: Fix ordering of...
Unknown
Unreviewed
CVE-2024-53143
was published
Dec 7, 2024
The Simple Side Tab WordPress plugin before 2.2.0 does not sanitise and escape some of its...
Unknown
Unreviewed
CVE-2024-11183
was published
Dec 7, 2024
This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sonoma...
High
Unreviewed
CVE-2024-23285
was published
Mar 8, 2024
An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4,...
High
Unreviewed
CVE-2024-23280
was published
Mar 8, 2024
The If Menu plugin for WordPress is vulnerable to unauthorized modification of the plugin's...
Moderate
Unreviewed
CVE-2024-7894
was published
Dec 7, 2024
The 워드프레스 결제 심플페이 – 우커머스 결제 플러그인 plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-11943
was published
Dec 7, 2024
The Mollie for Contact Form 7 plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-12165
was published
Dec 7, 2024
ProTip!
Advisories are also available from the
GraphQL API