Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,360
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,793
NuGet
683
pip
3,471
Pub
12
RubyGems
894
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,880 advisories

Loading
The Ni Sales Commission For WooCommerce plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed
CVE-2024-13424 was published Jan 31, 2025
The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-13717 was published Jan 31, 2025
The Live2DWebCanvas plugin for WordPress is vulnerable to arbitrary file deletion due to... High Unreviewed
CVE-2024-13767 was published Jan 31, 2025
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2024-23962 was published Jan 31, 2025
The ECPay Ecommerce for WooCommerce plugin for WordPress is vulnerable to unauthorized loss of... Moderate Unreviewed
CVE-2024-13652 was published Jan 30, 2025
The zStore Manager Basic plugin for WordPress is vulnerable to unauthorized loss of data due to a... Moderate Unreviewed
CVE-2024-13715 was published Jan 30, 2025
The Safe Ai Malware Protection for WP plugin for WordPress is vulnerable to unauthorized access... High Unreviewed
CVE-2024-12269 was published Jan 30, 2025
The Media Manager for UserPro plugin for WordPress is vulnerable to unauthorized modification of... High Unreviewed
CVE-2024-12821 was published Jan 30, 2025
The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can... High Unreviewed
CVE-2024-12129 was published Jan 30, 2025
The Media Manager for UserPro plugin for WordPress is vulnerable to unauthorized modification of... Critical Unreviewed
CVE-2024-12822 was published Jan 30, 2025
The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for... Moderate Unreviewed
CVE-2024-11583 was published Jan 30, 2025
The MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation &... High Unreviewed
CVE-2024-10591 was published Jan 30, 2025
IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1... Moderate Unreviewed
CVE-2022-43916 was published Jan 30, 2025
Missing authorization in Microsoft Account allows an unauthorized attacker to elevate privileges... High Unreviewed
CVE-2025-21396 was published Jan 30, 2025
In shouldSkipForInitialSUW of AdvancedPowerUsageDetail.java, there is a possible way to bypass... High Unreviewed
CVE-2024-40677 was published Jan 28, 2025
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24116 was published Jan 28, 2025
The issue was addressed with improved access restrictions to the file system. This issue is fixed... Moderate Unreviewed
CVE-2025-24143 was published Jan 28, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2, watchOS... Critical Unreviewed
CVE-2024-54530 was published Jan 28, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Sequoia... Moderate Unreviewed
CVE-2025-24096 was published Jan 28, 2025
Missing Authorization vulnerability in Haptiq picu – Online Photo Proofing Gallery allows... Moderate Unreviewed
CVE-2025-24590 was published Jan 27, 2025
Missing Authorization vulnerability in NotFound Admin and Site Enhancements (ASE) Pro allows... Moderate Unreviewed
CVE-2025-24653 was published Jan 27, 2025
Missing Authorization vulnerability in NotFound LearnDash LMS allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-24662 was published Jan 27, 2025
Missing Authorization vulnerability in David F. Carr RSVPMarker . This issue affects RSVPMarker :... Moderate Unreviewed
CVE-2025-24600 was published Jan 27, 2025
Missing Authorization vulnerability in UkrSolution Print Barcode Labels for your WooCommerce... Moderate Unreviewed
CVE-2025-24603 was published Jan 27, 2025
Missing Authorization vulnerability in Sprout Invoices Client Invoicing by Sprout Invoices allows... Moderate Unreviewed
CVE-2025-24606 was published Jan 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database