GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,681 advisories
Filter by severity
The Rover IDX plugin for WordPress is vulnerable to unauthorized access, modification, and loss...
Moderate
Unreviewed
CVE-2024-10003
was published
Oct 22, 2024
In Minecraft mod "Command Block IDE" up to and including version 0.4.9, a missing authorization ...
High
Unreviewed
CVE-2024-48645
was published
Oct 21, 2024
Missing Authorization vulnerability in ProfileGrid User Profiles ProfileGrid.This issue affects...
Moderate
Unreviewed
CVE-2024-49273
was published
Oct 21, 2024
Missing Authorization vulnerability in Rextheme WP VR allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2024-49293
was published
Oct 21, 2024
Missing Authorization vulnerability in Colorlib Simple Custom Post Order allows Exploiting...
Moderate
Unreviewed
CVE-2024-49321
was published
Oct 21, 2024
Subscriber Broken Access Control in Photo Gallery Builder <= 3.0 versions.
Moderate
Unreviewed
CVE-2024-49325
was published
Oct 20, 2024
The WP Easy Post Types plugin for WordPress is vulnerable to unauthorized access, modification,...
High
Unreviewed
CVE-2024-10078
was published
Oct 18, 2024
The Bulk images optimizer: Resize, optimize, convert to webp, rename … plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-9361
was published
Oct 18, 2024
The SendGrid for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to...
Moderate
Unreviewed
CVE-2024-9364
was published
Oct 18, 2024
The Download Monitor plugin for WordPress is vulnerable to authorization bypass due to a missing...
High
Unreviewed
CVE-2022-4972
was published
Oct 16, 2024
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to...
Moderate
Unreviewed
CVE-2022-4974
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7287
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7288
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
High
Unreviewed
CVE-2023-7291
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7289
was published
Oct 16, 2024
The CloudStack Quota feature allows cloud administrators to implement a quota or usage limit...
Moderate
Unreviewed
CVE-2024-45461
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7290
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7293
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
High
Unreviewed
CVE-2023-7294
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
Moderate
Unreviewed
CVE-2023-7292
was published
Oct 16, 2024
The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to authorization...
High
Unreviewed
CVE-2020-36840
was published
Oct 16, 2024
The Product Filter by WooBeWoo plugin for WordPress is vulnerable to authorization bypass in...
High
Unreviewed
CVE-2021-4444
was published
Oct 16, 2024
The Premium Addons for Elementor plugin for WordPress is vulnerable to Arbitrary Option Updates...
Moderate
Unreviewed
CVE-2021-4445
was published
Oct 16, 2024
The Essential Addons for Elementor plugin for WordPress is vulnerable to authorization bypass in...
Moderate
Unreviewed
CVE-2021-4446
was published
Oct 16, 2024
The Kaswara Modern VC Addons plugin for WordPress is vulnerable to authorization bypass in...
High
Unreviewed
CVE-2021-4448
was published
Oct 16, 2024
ProTip!
Advisories are also available from the
GraphQL API