GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,265 advisories
Filter by severity
Subscriber Broken Access Control in Photo Gallery Builder <= 3.0 versions.
Moderate
Unreviewed
CVE-2024-49325
was published
Oct 20, 2024
The WP Easy Post Types plugin for WordPress is vulnerable to unauthorized access, modification,...
High
Unreviewed
CVE-2024-10078
was published
Oct 18, 2024
The SendGrid for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to...
Moderate
Unreviewed
CVE-2024-9364
was published
Oct 18, 2024
The Bulk images optimizer: Resize, optimize, convert to webp, rename … plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-9361
was published
Oct 18, 2024
The CloudStack Quota feature allows cloud administrators to implement a quota or usage limit...
Moderate
Unreviewed
CVE-2024-45461
was published
Oct 16, 2024
In lunary-ai/lunary version 1.2.5, an improper access control vulnerability exists due to a...
Moderate
Unreviewed
CVE-2024-5248
was published
Jun 6, 2024
Vulnerability in the Oracle Service Bus product of Oracle Fusion Middleware (component: OSB Core...
High
Unreviewed
CVE-2024-21246
was published
Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
Critical
Unreviewed
CVE-2024-21216
was published
Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
High
Unreviewed
CVE-2024-21234
was published
Oct 15, 2024
Vulnerability in the Oracle Product Hub product of Oracle E-Business Suite (component: Item...
High
Unreviewed
CVE-2024-21252
was published
Oct 15, 2024
Vulnerability in the Oracle BI Publisher product of Oracle Analytics (component: Web Server). ...
High
Unreviewed
CVE-2024-21254
was published
Oct 15, 2024
Vulnerability in the Oracle Process Manufacturing Product Development product of Oracle E...
High
Unreviewed
CVE-2024-21250
was published
Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
High
Unreviewed
CVE-2024-21215
was published
Oct 15, 2024
The Download Monitor plugin for WordPress is vulnerable to authorization bypass due to a missing...
High
Unreviewed
CVE-2022-4972
was published
Oct 16, 2024
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to...
Moderate
Unreviewed
CVE-2022-4974
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7288
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
High
Unreviewed
CVE-2023-7291
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7289
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7290
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7293
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
High
Unreviewed
CVE-2023-7294
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7292
was published
Oct 16, 2024
The Discount Rules for WooCommerce plugin for WordPress is vulnerable to missing authorization...
Moderate
Unreviewed
CVE-2020-36834
was published
Oct 16, 2024
The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to authorization...
High
Unreviewed
CVE-2020-36840
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7287
was published
Oct 16, 2024
ProTip!
Advisories are also available from the
GraphQL API