GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,681 advisories
Filter by severity
The Rover IDX plugin for WordPress is vulnerable to unauthorized access, modification, and loss...
Moderate
Unreviewed
CVE-2024-10003
was published
Oct 22, 2024
In Minecraft mod "Command Block IDE" up to and including version 0.4.9, a missing authorization ...
High
Unreviewed
CVE-2024-48645
was published
Oct 21, 2024
Missing Authorization vulnerability in Rextheme WP VR allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2024-49293
was published
Oct 21, 2024
Missing Authorization vulnerability in ProfileGrid User Profiles ProfileGrid.This issue affects...
Moderate
Unreviewed
CVE-2024-49273
was published
Oct 21, 2024
Missing Authorization vulnerability in Colorlib Simple Custom Post Order allows Exploiting...
Moderate
Unreviewed
CVE-2024-49321
was published
Oct 21, 2024
Subscriber Broken Access Control in Photo Gallery Builder <= 3.0 versions.
Moderate
Unreviewed
CVE-2024-49325
was published
Oct 20, 2024
The WP Easy Post Types plugin for WordPress is vulnerable to unauthorized access, modification,...
High
Unreviewed
CVE-2024-10078
was published
Oct 18, 2024
The Bulk images optimizer: Resize, optimize, convert to webp, rename … plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-9361
was published
Oct 18, 2024
The SendGrid for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to...
Moderate
Unreviewed
CVE-2024-9364
was published
Oct 18, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7290
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7293
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
High
Unreviewed
CVE-2023-7294
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7292
was published
Oct 16, 2024
The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to authorization...
High
Unreviewed
CVE-2020-36840
was published
Oct 16, 2024
The Download Monitor plugin for WordPress is vulnerable to authorization bypass due to a missing...
High
Unreviewed
CVE-2022-4972
was published
Oct 16, 2024
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to...
Moderate
Unreviewed
CVE-2022-4974
was published
Oct 16, 2024
The CloudStack Quota feature allows cloud administrators to implement a quota or usage limit...
Moderate
Unreviewed
CVE-2024-45461
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7287
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7288
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
High
Unreviewed
CVE-2023-7291
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7289
was published
Oct 16, 2024
The File Manager plugin for WordPress is vulnerable to authorization bypass due to a missing...
Critical
Unreviewed
CVE-2018-25105
was published
Oct 16, 2024
The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file...
High
Unreviewed
CVE-2019-25215
was published
Oct 16, 2024
The ShopWP plugin for WordPress is vulnerable to authorization bypass due to a missing capability...
High
Unreviewed
CVE-2019-25214
was published
Oct 16, 2024
The SiteGround Optimizer plugin for WordPress is vulnerable to authorization bypass leading to...
Critical
Unreviewed
CVE-2019-25217
was published
Oct 16, 2024
ProTip!
Advisories are also available from the
GraphQL API