Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,112
Maven
5,000+
npm
3,767
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

837 advisories

Loading
Missing Authorization vulnerability in Metagauss EventPrime.This issue affects EventPrime: from n... High Unreviewed
CVE-2024-24832 was published Mar 23, 2024
Incorrect access control in Geovision GV-ASWeb version 6.1.0.0 or less allows unauthorized... High Unreviewed
CVE-2024-56898 was published Feb 3, 2025
Missing Authorization vulnerability in BdThemes Prime Slider – Addons For Elementor.This issue... High Unreviewed
CVE-2024-32682 was published Apr 22, 2024
Incorrect access control in Tenda AC1200 Smart Dual-Band WiFi Router Model AC6 v2.0 Firmware v15... High Unreviewed
CVE-2024-46450 was published Jan 17, 2025
Missing Authorization vulnerability in Academy LMS.This issue affects Academy LMS: from n/a... High Unreviewed
CVE-2024-33912 was published May 6, 2024
JeeWMS before v2025.01.01 was discovered to contain a permission bypass in the component ... High Unreviewed
CVE-2024-57757 was published Jan 15, 2025
The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-12171 was published Feb 1, 2025
SimpleHelp remote support software v5.5.7 and before has a vulnerability that allows low... High Unreviewed
CVE-2024-57726 was published Jan 16, 2025
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2024-23962 was published Jan 31, 2025
The Live2DWebCanvas plugin for WordPress is vulnerable to arbitrary file deletion due to... High Unreviewed
CVE-2024-13767 was published Jan 31, 2025
The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login... High Unreviewed
CVE-2024-1991 was published Apr 9, 2024
The Safe Ai Malware Protection for WP plugin for WordPress is vulnerable to unauthorized access... High Unreviewed
CVE-2024-12269 was published Jan 30, 2025
The Media Manager for UserPro plugin for WordPress is vulnerable to unauthorized modification of... High Unreviewed
CVE-2024-12821 was published Jan 30, 2025
The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can... High Unreviewed
CVE-2024-12129 was published Jan 30, 2025
The MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation &... High Unreviewed
CVE-2024-10591 was published Jan 30, 2025
Missing authorization in Microsoft Account allows an unauthorized attacker to elevate privileges... High Unreviewed
CVE-2025-21396 was published Jan 30, 2025
The issue was addressed with additional permissions checks. This issue is fixed in macOS Ventura... High Unreviewed
CVE-2023-27963 was published May 8, 2023
A permissions issue was addressed with improved validation. This issue is fixed in macOS Big Sur... High Unreviewed
CVE-2021-30713 was published May 24, 2022
In shouldSkipForInitialSUW of AdvancedPowerUsageDetail.java, there is a possible way to bypass... High Unreviewed
CVE-2024-40677 was published Jan 28, 2025
Missing Authorization vulnerability in CodeSolz Better Find and Replace allows Privilege... High Unreviewed
CVE-2025-24734 was published Jan 27, 2025
Missing Authorization vulnerability in Marian Kanev Cab fare calculator allows Stored XSS. This... High Unreviewed
CVE-2025-23982 was published Jan 27, 2025
The Zox News theme for WordPress is vulnerable to unauthorized modification of data that can lead... High Unreviewed
CVE-2024-11936 was published Jan 26, 2025
The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to... High Unreviewed
CVE-2024-10574 was published Jan 26, 2025
In multiple functions of CompanionDeviceManagerService.java, there is a possible way to grant... High Unreviewed
CVE-2024-49732 was published Jan 22, 2025
The Tutor LMS Pro plugin for WordPress is vulnerable to unauthorized access of data, modification... High Unreviewed
CVE-2024-4222 was published May 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database