GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,674 advisories
Filter by severity
The Discount Rules for WooCommerce plugin for WordPress is vulnerable to missing authorization...
Moderate
Unreviewed
CVE-2020-36834
was published
Oct 16, 2024
The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a...
Critical
Unreviewed
CVE-2020-36837
was published
Oct 16, 2024
The Multiline files upload for contact form 7 plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2024-9891
was published
Oct 16, 2024
Missing authorization in Power Platform allows an unauthenticated attacker to view sensitive...
High
Unreviewed
CVE-2024-38190
was published
Oct 16, 2024
Vulnerability in the Oracle Product Hub product of Oracle E-Business Suite (component: Item...
High
Unreviewed
CVE-2024-21252
was published
Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
Critical
Unreviewed
CVE-2024-21216
was published
Oct 15, 2024
Vulnerability in the Oracle Process Manufacturing Product Development product of Oracle E...
High
Unreviewed
CVE-2024-21250
was published
Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
High
Unreviewed
CVE-2024-21215
was published
Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
High
Unreviewed
CVE-2024-21234
was published
Oct 15, 2024
Vulnerability in the Oracle BI Publisher product of Oracle Analytics (component: Web Server). ...
High
Unreviewed
CVE-2024-21254
was published
Oct 15, 2024
Vulnerability in the Oracle Service Bus product of Oracle Fusion Middleware (component: OSB Core...
High
Unreviewed
CVE-2024-21246
was published
Oct 15, 2024
In Splunk Enterprise versions below 9.3.1, and 9.2.0 versions below 9.2.3, and Splunk Cloud...
High
Unreviewed
CVE-2024-45732
was published
Oct 14, 2024
The Order Attachments for WooCommerce plugin for WordPress is vulnerable to unauthorized limited...
Moderate
Unreviewed
CVE-2024-9756
was published
Oct 12, 2024
The Read more By Adam plugin for WordPress is vulnerable to unauthorized loss of data due to a...
Moderate
Unreviewed
CVE-2024-9187
was published
Oct 12, 2024
The ImagePress – Image Gallery plugin for WordPress is vulnerable to unauthorized modification...
Moderate
Unreviewed
CVE-2024-9824
was published
Oct 12, 2024
The Bridge Core plugin for WordPress is vulnerable to unauthorized modification of data or loss...
Moderate
Unreviewed
CVE-2024-9860
was published
Oct 12, 2024
The Linkz.ai plugin for WordPress is vulnerable to unauthorized modification of data due to a...
Moderate
Unreviewed
CVE-2024-9586
was published
Oct 11, 2024
The Linkz.ai plugin for WordPress is vulnerable to unauthorized modification of data due to a...
Moderate
Unreviewed
CVE-2024-9587
was published
Oct 11, 2024
The Hunk Companion plugin for WordPress is vulnerable to unauthorized plugin installation...
Critical
Unreviewed
CVE-2024-9707
was published
Oct 11, 2024
The GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor plugin for...
Critical
Unreviewed
CVE-2024-9234
was published
Oct 11, 2024
In JetBrains YouTrack before 2024.3.46677 improper access control allowed users with project...
Moderate
Unreviewed
CVE-2024-48902
was published
Oct 10, 2024
The UserPlus plugin for WordPress is vulnerable to unauthorized access, modification, and loss of...
Moderate
Unreviewed
CVE-2024-9520
was published
Oct 10, 2024
The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for...
Moderate
Unreviewed
CVE-2024-9067
was published
Oct 10, 2024
The WP Helper Premium plugin for WordPress is vulnerable to unauthorized modification of data due...
Moderate
Unreviewed
CVE-2024-9065
was published
Oct 10, 2024
The Notification for Telegram plugin for WordPress is vulnerable to unauthorized test message...
Moderate
Unreviewed
CVE-2024-9685
was published
Oct 10, 2024
ProTip!
Advisories are also available from the
GraphQL API