GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,458

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

23,514 advisories

Filter by severity

Sort by

Least recently updated

Unrestricted Upload of File with Dangerous Type vulnerability in Webful Creations Computer Repair... Critical Unreviewed

CVE-2024-51793 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Made I.T. Forms allows Upload a... Critical Unreviewed

CVE-2024-51791 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Joshua Wolfe The Novel Design... Critical Unreviewed

CVE-2024-51788 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in UjW0L Image Classify allows... Critical Unreviewed

CVE-2024-51789 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Dang Ngoc Binh Audio Record... Critical Unreviewed

CVE-2024-51792 was published Nov 11, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Team HB WEBSOL HB AUDIO GALLERY... Critical Unreviewed

CVE-2024-51790 was published Nov 11, 2024

The Category Ajax Filter plugin for WordPress is vulnerable to Local File Inclusion in all... Critical Unreviewed

CVE-2024-10871 was published Nov 9, 2024

The WP Membership plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed

CVE-2024-10547 was published Nov 9, 2024

The RegistrationMagic – User Registration Plugin with Custom Registration Forms plugin for... Critical Unreviewed

CVE-2024-10508 was published Nov 9, 2024

The Leopard - WordPress Offload Media plugin for WordPress is vulnerable to unauthorized... Critical Unreviewed

CVE-2024-10589 was published Nov 9, 2024

The WordPress User Extra Fields plugin for WordPress is vulnerable to arbitrary file uploads due... Critical Unreviewed

CVE-2024-10801 was published Nov 9, 2024

The WPLMS Learning Management System for WordPress, WordPress LMS theme for WordPress is... Critical Unreviewed

CVE-2024-10470 was published Nov 9, 2024

The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed

CVE-2024-10625 was published Nov 9, 2024

The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed

CVE-2024-10627 was published Nov 9, 2024

The CE21 Suite plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2024-10284 was published Nov 9, 2024

The CE21 Suite plugin for WordPress is vulnerable to sensitive information disclosure via the... Critical Unreviewed

CVE-2024-10285 was published Nov 9, 2024

The Debug Tool plugin for WordPress is vulnerable to arbitrary file creation due to a missing... Critical Unreviewed

CVE-2024-10586 was published Nov 9, 2024

Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of... Critical Unreviewed

CVE-2024-45763 was published Nov 8, 2024

Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in... Critical Unreviewed

CVE-2024-45764 was published Nov 8, 2024

Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of... Critical Unreviewed

CVE-2024-45765 was published Nov 8, 2024

dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the... Critical Unreviewed

CVE-2024-50966 was published Nov 8, 2024

An unauthenticated attacker with access to the local network of the medical office can use known... Critical Unreviewed

CVE-2024-50588 was published Nov 8, 2024

The Registrations for the Events Calendar WordPress plugin before 2.12.4 does not sanitise and... Critical Unreviewed

CVE-2024-7982 was published Nov 8, 2024

The pwrstudio web application of EV Charger (in the server in Circontrol Raption through 5.6.2)... Critical Unreviewed

CVE-2020-8007 was published Nov 8, 2024

Trimble TM4Web 22.2.0 allows unauthenticated attackers to access /inc/tm_ajax.msw?func... Critical Unreviewed

CVE-2023-27195 was published Nov 8, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,514 advisories