Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

110,974 advisories

Loading
Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical... Moderate Unreviewed
CVE-2024-0160 was published Jun 12, 2024
The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel,... Moderate Unreviewed
CVE-2024-3925 was published Jun 12, 2024
The in-app browser of LINE client for iOS versions below 14.9.0 contains a Universal XSS (UXSS)... Moderate Unreviewed
CVE-2024-5739 was published Jun 12, 2024
The Social Sharing Plugin WordPress plugin before 3.3.63 does not sanitise and escape some of... Moderate Unreviewed
CVE-2024-4924 was published Jun 12, 2024
The CoDesigner WooCommerce Builder for Elementor – Customize Checkout, Shop, Email, Products &... Moderate Unreviewed
CVE-2024-4564 was published Jun 12, 2024
The Premium Addons for Elementor plugin for WordPress is vulnerable to DOM-Based Stored Cross... Moderate Unreviewed
CVE-2024-5553 was published Jun 12, 2024
The Divi Torque Lite – Divi Theme and Extra Theme plugin for WordPress is vulnerable to Stored... Moderate Unreviewed
CVE-2024-5892 was published Jun 12, 2024
The Custom Field Suite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-3559 was published Jun 12, 2024
The ARForms - Premium WordPress Form Builder Plugin WordPress plugin before 6.4.1 does not... Moderate Unreviewed
CVE-2024-0427 was published Jun 12, 2024
Use of uninitialized resource issue exists in IPCOM EX2 Series (V01L0x Series) V01L07NF0201 and... Moderate Unreviewed
CVE-2024-36454 was published Jun 12, 2024
OS command injection vulnerability in WRC-X5400GS-B v1.0.10 and earlier, and WRC-X5400GSA-B v1.0... Moderate Unreviewed
CVE-2024-36103 was published Jun 12, 2024
The BuddyPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2024-4892 was published Jun 12, 2024
Policy bypass in CORS in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to bypass... Moderate Unreviewed
CVE-2024-5840 was published Jun 11, 2024
Inappropriate implementation in Downloads in Google Chrome prior to 126.0.6478.54 allowed a... Moderate Unreviewed
CVE-2024-5843 was published Jun 11, 2024
Inappropriate Implementation in Memory Allocator in Google Chrome prior to 126.0.6478.54 allowed... Moderate Unreviewed
CVE-2024-5839 was published Jun 11, 2024
The Futurio Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2024-5646 was published Jun 11, 2024
The Events Addon for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-4669 was published Jun 11, 2024
A vulnerability exists in the FOXMAN-UN/UNEM server / APIGateway that if exploited allows a... Moderate Unreviewed
CVE-2024-28022 was published Jun 11, 2024
Improper exception handling in McAfee Security: Antivirus VPN for Android before 8.3.0 could... Moderate Unreviewed
CVE-2024-34406 was published Jun 11, 2024
Missing Authorization vulnerability in Tagembed.This issue affects Tagembed: from n/a through 5.5. Moderate Unreviewed
CVE-2024-34804 was published Jun 11, 2024
A vulnerability classified as problematic has been found in playSMS up to 1.4.7. Affected is an... Moderate Unreviewed
CVE-2024-5851 was published Jun 11, 2024
Missing Authorization vulnerability in Repute Infosystems BookingPress.This issue affects... Moderate Unreviewed
CVE-2024-34799 was published Jun 11, 2024
Missing Authorization vulnerability in Tobias Conrad Builder for WooCommerce reviews shortcodes –... Moderate Unreviewed
CVE-2024-34763 was published Jun 11, 2024
Missing Authorization vulnerability in Fastly.This issue affects Fastly: from n/a through 1.2.25. Moderate Unreviewed
CVE-2024-34768 was published Jun 11, 2024
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-35263 was published Jun 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database