Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

341 advisories

Loading
The Get Post Content Shortcode plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed
CVE-2024-12447 was published Dec 14, 2024
The Shortcodes for Elementor plugin for WordPress is vulnerable to Information Exposure in all... Moderate Unreviewed
CVE-2024-10690 was published Dec 14, 2024
The WP Timetics- AI-powered Appointment Booking Calendar and Online Scheduling Plugin plugin for... Moderate Unreviewed
CVE-2024-11275 was published Dec 13, 2024
The Rate My Post – Star Rating Plugin by FeedbackWP plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-12309 was published Dec 13, 2024
The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-11181 was published Dec 12, 2024
The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed
CVE-2024-12059 was published Dec 12, 2024
A vulnerability classified as problematic has been found in Dromara UJCMS up to 9.6.3. This... Moderate Unreviewed
CVE-2024-12483 was published Dec 12, 2024
An object-level access control vulnerability in Unifiedtransform version 2.0 and potentially... Moderate Unreviewed
CVE-2024-12305 was published Dec 9, 2024
The XLTab – Accordions and Tabs for Elementor Page Builder plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-10689 was published Dec 6, 2024
The PowerPack Elementor Addons (Free Widgets, Extensions and Templates) plugin for WordPress is... Moderate Unreviewed
CVE-2024-10692 was published Dec 6, 2024
The AnyWhere Elementor plugin for WordPress is vulnerable to Information Exposure in all versions... Moderate Unreviewed
CVE-2024-10777 was published Dec 5, 2024
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Information... Moderate Unreviewed
CVE-2024-10787 was published Dec 4, 2024
The Dollie Hub – Build Your Own WordPress Cloud Platform plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-12099 was published Dec 4, 2024
The Charity Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all... Moderate Unreviewed
CVE-2024-12062 was published Dec 3, 2024
The Primary Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all... Moderate Unreviewed
CVE-2024-10670 was published Nov 28, 2024
The Restaurant & Cafe Addon for Elementor plugin for WordPress is vulnerable to Information... Moderate Unreviewed
CVE-2024-10780 was published Nov 28, 2024
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Information... Moderate Unreviewed
CVE-2024-10798 was published Nov 28, 2024
The Enter Addons – Ultimate Template Builder for Elementor plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-10868 was published Nov 23, 2024
An authorization bypass through user-controlled key vulnerability has been reported to affect... Moderate Unreviewed
CVE-2024-50395 was published Nov 22, 2024
The Easy Twitter Feed – Twitter feeds plugin for WP plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-10666 was published Nov 22, 2024
The Popularis Extra plugin for WordPress is vulnerable to Information Exposure in all versions up... Moderate Unreviewed
CVE-2024-10795 was published Nov 16, 2024
java_shop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain... Moderate Unreviewed
CVE-2024-50651 was published Nov 15, 2024
The Boostify Header Footer Builder for Elementor plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-10794 was published Nov 13, 2024
The BuddyPress Builder for Elementor – BuddyBuilder plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-10778 was published Nov 13, 2024
An authorization bypass through user-controlled key vulnerability [CWE-639] in Fortinet... Moderate Unreviewed
CVE-2023-47543 was published Nov 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database