GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,680
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
91,133 advisories
Filter by severity
The MainWP Dashboard – The Private WordPress Manager for Multiple Website Maintenance plugin for...
High
Unreviewed
CVE-2016-15041
was published
Oct 16, 2024
The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
High
Unreviewed
CVE-2017-20192
was published
Oct 16, 2024
The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery...
High
Unreviewed
CVE-2012-10018
was published
Oct 16, 2024
The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized arbitrary file deletion...
High
Unreviewed
CVE-2020-36836
was published
Oct 16, 2024
The WP Lead Plus X plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions...
High
Unreviewed
CVE-2020-36839
was published
Oct 16, 2024
The Facebook Chat Plugin for WordPress is vulnerable to authorization bypass due to a missing...
High
Unreviewed
CVE-2020-36838
was published
Oct 16, 2024
The Rich Review plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the POST...
High
Unreviewed
CVE-2019-25216
was published
Oct 16, 2024
The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file...
High
Unreviewed
CVE-2019-25215
was published
Oct 16, 2024
The ShopWP plugin for WordPress is vulnerable to authorization bypass due to a missing capability...
High
Unreviewed
CVE-2019-25214
was published
Oct 16, 2024
The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to privilege escalation...
High
Unreviewed
CVE-2024-9305
was published
Oct 16, 2024
Improper Access Control in Imagine Cup allows an authorized attacker to elevate privileges over a...
High
Unreviewed
CVE-2024-38204
was published
Oct 16, 2024
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate...
High
Unreviewed
CVE-2024-38139
was published
Oct 16, 2024
Missing authorization in Power Platform allows an unauthenticated attacker to view sensitive...
High
Unreviewed
CVE-2024-38190
was published
Oct 16, 2024
Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price...
High
Unreviewed
CVE-2024-21266
was published
Oct 15, 2024
Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite ...
High
Unreviewed
CVE-2024-21270
was published
Oct 15, 2024
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/Python). ...
High
Unreviewed
CVE-2024-21272
was published
Oct 15, 2024
Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21268
was published
Oct 15, 2024
Vulnerability in the Oracle Quoting product of Oracle E-Business Suite (component: User Interface...
High
Unreviewed
CVE-2024-21275
was published
Oct 15, 2024
Vulnerability in the Oracle Incentive Compensation product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21269
was published
Oct 15, 2024
Vulnerability in the Oracle Field Service product of Oracle E-Business Suite (component: Field...
High
Unreviewed
CVE-2024-21271
was published
Oct 15, 2024
Vulnerability in the Oracle Work in Process product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21276
was published
Oct 15, 2024
Vulnerability in the Oracle Contract Lifecycle Management for Public Sector product of Oracle E...
High
Unreviewed
CVE-2024-21278
was published
Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component:...
High
Unreviewed
CVE-2024-21274
was published
Oct 15, 2024
Vulnerability in the Oracle Service Contracts product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21280
was published
Oct 15, 2024
Vulnerability in the Oracle MES for Process Manufacturing product of Oracle E-Business Suite ...
High
Unreviewed
CVE-2024-21277
was published
Oct 15, 2024
ProTip!
Advisories are also available from the
GraphQL API