GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,944
Erlang
29
GitHub Actions
16
Go
1,729
Maven
4,955
npm
3,489
NuGet
607
pip
3,056
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
238,901 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
af_unix: Update unix_sk(sk)-...
Unknown
Unreviewed
CVE-2024-36972
was published
Jun 10, 2024
Multiple memory corruption issues were addressed with improved memory handling. This issue is...
High
Unreviewed
CVE-2024-23214
was published
Jan 23, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: fix...
Unknown
Unreviewed
CVE-2024-36971
was published
Jun 10, 2024
An access issue was addressed with improved access restrictions. This issue is fixed in watchOS...
Moderate
Unreviewed
CVE-2024-23206
was published
Jan 23, 2024
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, macOS...
High
Unreviewed
CVE-2023-42890
was published
Dec 12, 2023
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS...
High
Unreviewed
CVE-2023-42917
was published
Dec 1, 2023
CWE-552: Files or Directories Accessible to External Parties vulnerability exists which may...
Moderate
Unreviewed
CVE-2024-5056
was published
Jun 12, 2024
A path traversal vulnerability in mintplex-labs/anything-llm allowed a manager to bypass the ...
Critical
Unreviewed
CVE-2024-5211
was published
Jun 12, 2024
The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to...
Critical
Unreviewed
CVE-2024-4898
was published
Jun 12, 2024
The Download Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a user...
Moderate
Unreviewed
CVE-2024-1766
was published
Jun 12, 2024
Missing Authorization vulnerability in weForms.This issue affects weForms: from n/a through 1.6.18.
Moderate
Unreviewed
CVE-2023-51524
was published
Jun 12, 2024
The Newsletter - API v1 and v2 addon plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-5674
was published
Jun 12, 2024
The Icegram Express plugin for WordPress is vulnerable to SQL Injection via the ‘options[list_id]...
High
Unreviewed
CVE-2024-4845
was published
Jun 12, 2024
The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-3492
was published
Jun 12, 2024
Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map...
Moderate
Unreviewed
CVE-2023-44234
was published
Jun 12, 2024
Missing Authorization vulnerability in Buy Me a Coffee.This issue affects Buy Me a Coffee: from n...
Moderate
Unreviewed
CVE-2023-25030
was published
Jun 12, 2024
Missing Authorization vulnerability in Consensu.IO Consensu.Io.This issue affects Consensu.Io:...
High
Unreviewed
CVE-2023-48280
was published
Jun 12, 2024
Missing Authorization vulnerability in Afzal Multani WP Clone Menu.This issue affects WP Clone...
Moderate
Unreviewed
CVE-2023-38395
was published
Jun 12, 2024
Missing Authorization vulnerability in Himalaya Saxena Highcompress Image Compressor.This issue...
Moderate
Unreviewed
CVE-2023-40209
was published
Jun 12, 2024
Missing Authorization vulnerability in Gangesh Matta Simple Org Chart.This issue affects Simple...
Moderate
Unreviewed
CVE-2023-40603
was published
Jun 12, 2024
Missing Authorization vulnerability in Hardik Chavada Sticky Social Media Icons.This issue...
Moderate
Unreviewed
CVE-2023-40672
was published
Jun 12, 2024
Missing Authorization vulnerability in Vark Pricing Deals for WooCommerce.This issue affects...
Moderate
Unreviewed
CVE-2023-41240
was published
Jun 12, 2024
Missing Authorization vulnerability in Mandrill wpMandrill.This issue affects wpMandrill: from n...
Moderate
Unreviewed
CVE-2023-47828
was published
Jun 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Lim Kai Yang Grab & Save.This issue affects...
Moderate
Unreviewed
CVE-2023-47845
was published
Jun 12, 2024
Missing Authorization vulnerability in Piotnet Forms.This issue affects Piotnet Forms: from n/a...
Moderate
Unreviewed
CVE-2023-51413
was published
Jun 12, 2024
ProTip!
Advisories are also available from the
GraphQL API