Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,112
Maven
5,000+
npm
3,767
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

837 advisories

Loading
In updateInternal of MediaProvider.java , there is a possible access of another app's files due... High Unreviewed
CVE-2024-43089 was published Nov 13, 2024
In mayAdminGrantPermission of AdminRestrictedPermissionsUtils.java, there is a possible way to... High Unreviewed
CVE-2024-40661 was published Nov 13, 2024
In multiple locations, there is a possible way to bypass a restriction on adding new Wi-Fi... High Unreviewed
CVE-2024-31332 was published Jul 9, 2024
In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without... High Unreviewed
CVE-2024-31318 was published Jul 9, 2024
In onCreate of WifiDialogActivity.java, there is a possible way to bypass the... High Unreviewed
CVE-2024-23704 was published May 7, 2024
Missing Authorization vulnerability in Saul Morales Pacheco Banner System allows Exploiting... High Unreviewed
CVE-2024-54359 was published Dec 16, 2024
Missing Authorization vulnerability in Blokhaus Minterpress allows Privilege Escalation.This... High Unreviewed
CVE-2024-54379 was published Dec 16, 2024
Missing Authorization vulnerability in Quietly Quietly Insights allows Privilege Escalation.This... High Unreviewed
CVE-2024-54378 was published Dec 16, 2024
Missing Authorization vulnerability in Seerox Easy Blocks pro allows Accessing Functionality Not... High Unreviewed
CVE-2024-54256 was published Dec 13, 2024
Missing Authorization vulnerability in Premmerce Premmerce User Roles allows Exploiting... High Unreviewed
CVE-2023-41130 was published Dec 13, 2024
Missing Authorization vulnerability in Artbees JupiterX Core allows Exploiting Incorrectly... High Unreviewed
CVE-2023-38385 was published Dec 13, 2024
Missing Authorization vulnerability in Surfer Surfer allows Exploiting Incorrectly Configured... High Unreviewed
CVE-2023-35037 was published Dec 13, 2024
Missing Authorization vulnerability in Themeisle Redirection for Contact Form 7 allows Exploiting... High Unreviewed
CVE-2023-39920 was published Dec 13, 2024
Missing Authorization vulnerability in СleanTalk - Anti-Spam Protection Spam protection, AntiSpam... High Unreviewed
CVE-2023-33996 was published Dec 13, 2024
Missing Authorization vulnerability in Reservation Diary ReDi Restaurant Reservation allows... High Unreviewed
CVE-2023-36510 was published Dec 13, 2024
Missing Authorization vulnerability in Matthew Ruddy Easing Slider allows Exploiting Incorrectly... High Unreviewed
CVE-2023-30490 was published Dec 13, 2024
Missing Authorization vulnerability in Webcodin WCP Contact Form allows Exploiting Incorrectly... High Unreviewed
CVE-2023-32520 was published Dec 13, 2024
Missing Authorization vulnerability in wp3sixty Woo Custom Emails allows Exploiting Incorrectly... High Unreviewed
CVE-2023-32507 was published Dec 13, 2024
Missing Authorization vulnerability in Total-Soft Portfolio Gallery – Responsive Image Gallery... High Unreviewed
CVE-2023-32585 was published Dec 13, 2024
Missing Authorization vulnerability in Video Gallery by Total-Soft Video Gallery – YouTube... High Unreviewed
CVE-2023-25988 was published Dec 13, 2024
The MainWP Child – Securely Connects to the MainWP Dashboard to Manage Multiple Sites plugin for... High Unreviewed
CVE-2024-10783 was published Dec 13, 2024
The WP Courses LMS – Online Courses Builder, eLearning Courses, Courses Solution, Education... High Unreviewed
CVE-2024-12172 was published Dec 12, 2024
The de:branding plugin for WordPress is vulnerable to unauthorized modification of data that can... High Unreviewed
CVE-2024-11443 was published Dec 12, 2024
An issue was discovered in the web services of Digi ConnectPort LTS before 1.4.12. It allows an... High Unreviewed
CVE-2024-50628 was published Dec 10, 2024
The RapidLoad – Optimize Web Vitals Automatically plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-11840 was published Dec 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database