Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,944
Erlang
29
GitHub Actions
16
Go
1,729
Maven
4,955
npm
3,489
NuGet
607
pip
3,056
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+

238,901 advisories

In the Linux kernel, the following vulnerability has been resolved: af_unix: Update unix_sk(sk)-... Unknown Unreviewed
CVE-2024-36972 was published Jun 10, 2024
Multiple memory corruption issues were addressed with improved memory handling. This issue is... High Unreviewed
CVE-2024-23214 was published Jan 23, 2024
In the Linux kernel, the following vulnerability has been resolved: net: fix... Unknown Unreviewed
CVE-2024-36971 was published Jun 10, 2024
An access issue was addressed with improved access restrictions. This issue is fixed in watchOS... Moderate Unreviewed
CVE-2024-23206 was published Jan 23, 2024
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, macOS... High Unreviewed
CVE-2023-42890 was published Dec 12, 2023
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS... High Unreviewed
CVE-2023-42917 was published Dec 1, 2023
CWE-552: Files or Directories Accessible to External Parties vulnerability exists which may... Moderate Unreviewed
CVE-2024-5056 was published Jun 12, 2024
A path traversal vulnerability in mintplex-labs/anything-llm allowed a manager to bypass the ... Critical Unreviewed
CVE-2024-5211 was published Jun 12, 2024
The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to... Critical Unreviewed
CVE-2024-4898 was published Jun 12, 2024
The Download Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a user... Moderate Unreviewed
CVE-2024-1766 was published Jun 12, 2024
Missing Authorization vulnerability in weForms.This issue affects weForms: from n/a through 1.6.18. Moderate Unreviewed
CVE-2023-51524 was published Jun 12, 2024
The Newsletter - API v1 and v2 addon plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-5674 was published Jun 12, 2024
The Icegram Express plugin for WordPress is vulnerable to SQL Injection via the ‘options[list_id]... High Unreviewed
CVE-2024-4845 was published Jun 12, 2024
The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-3492 was published Jun 12, 2024
Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map... Moderate Unreviewed
CVE-2023-44234 was published Jun 12, 2024
Missing Authorization vulnerability in Buy Me a Coffee.This issue affects Buy Me a Coffee: from n... Moderate Unreviewed
CVE-2023-25030 was published Jun 12, 2024
Missing Authorization vulnerability in Consensu.IO Consensu.Io.This issue affects Consensu.Io:... High Unreviewed
CVE-2023-48280 was published Jun 12, 2024
Missing Authorization vulnerability in Afzal Multani WP Clone Menu.This issue affects WP Clone... Moderate Unreviewed
CVE-2023-38395 was published Jun 12, 2024
Missing Authorization vulnerability in Himalaya Saxena Highcompress Image Compressor.This issue... Moderate Unreviewed
CVE-2023-40209 was published Jun 12, 2024
Missing Authorization vulnerability in Gangesh Matta Simple Org Chart.This issue affects Simple... Moderate Unreviewed
CVE-2023-40603 was published Jun 12, 2024
Missing Authorization vulnerability in Hardik Chavada Sticky Social Media Icons.This issue... Moderate Unreviewed
CVE-2023-40672 was published Jun 12, 2024
Missing Authorization vulnerability in Vark Pricing Deals for WooCommerce.This issue affects... Moderate Unreviewed
CVE-2023-41240 was published Jun 12, 2024
Missing Authorization vulnerability in Mandrill wpMandrill.This issue affects wpMandrill: from n... Moderate Unreviewed
CVE-2023-47828 was published Jun 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Lim Kai Yang Grab & Save.This issue affects... Moderate Unreviewed
CVE-2023-47845 was published Jun 12, 2024
Missing Authorization vulnerability in Piotnet Forms.This issue affects Piotnet Forms: from n/a... Moderate Unreviewed
CVE-2023-51413 was published Jun 12, 2024
ProTip! Advisories are also available from the GraphQL API