Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

131,108 advisories

Loading
The Form Maker by 10Web WordPress plugin before 1.15.33 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2024-13053 was published May 15, 2025
The Clasify Classified Listing WordPress plugin through 1.0.7 does not sanitise and escape a... Moderate Unreviewed
CVE-2024-12725 was published May 15, 2025
The Competition Form WordPress plugin through 2.0 does not have CSRF check in place when updating... Moderate Unreviewed
CVE-2024-12750 was published May 15, 2025
The Top Comments WordPress plugin through 1.0 does not sanitise and escape some of its settings,... Moderate Unreviewed
CVE-2024-12874 was published May 15, 2025
The WP ULike WordPress plugin before 4.7.6 does not sanitise and escape some of its settings,... Moderate Unreviewed
CVE-2024-12770 was published May 15, 2025
The MailPoet WordPress plugin before 5.5.2 does not sanitise and escape some of its settings,... Moderate Unreviewed
CVE-2024-12743 was published May 15, 2025
The AWeber WordPress plugin through 7.3.20 does not sanitise and escape some of its settings,... Moderate Unreviewed
CVE-2024-13313 was published May 15, 2025
The MB Custom Post Types & Custom Taxonomies WordPress plugin before 2.7.7 does not sanitise and... Moderate Unreviewed
CVE-2024-10143 was published May 15, 2025
The Full Screen (Page) Background Image Slideshow WordPress plugin through 1.1 does not sanitise... Moderate Unreviewed
CVE-2024-11221 was published May 15, 2025
The BTEV WordPress plugin through 2.0.2 does not have CSRF check in place when updating its... Moderate Unreviewed
CVE-2024-10677 was published May 15, 2025
The jwp-a11y WordPress plugin through 4.1.7 does not sanitise and escape some of its settings,... Moderate Unreviewed
CVE-2024-11190 was published May 15, 2025
The JSFiddle Shortcode WordPress plugin before 1.1.3 does not validate and escape some of its... Moderate Unreviewed
CVE-2024-10818 was published May 15, 2025
The Geocache Stat Bar Widget WordPress plugin through 0.911 does not sanitise and escape some of... Moderate Unreviewed
CVE-2024-11266 was published May 15, 2025
The Jetpack WordPress plugin before 13.8 does not ensure that the post created by the Contact... Moderate Unreviewed
CVE-2024-10075 was published May 15, 2025
The Auto Prune Posts WordPress plugin before 3.0.0 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2024-10639 was published May 15, 2025
The Sailthru Triggermail WordPress plugin through 1.1 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2024-11141 was published May 15, 2025
The Jetpack WordPress plugin before 13.8, Jetpack Boost WordPress plugin before 3.4.8 use... Moderate Unreviewed
CVE-2024-10076 was published May 15, 2025
The Hubbub Lite WordPress plugin before 1.34.4 does not sanitise and escape some of its settings... Moderate Unreviewed
CVE-2024-10145 was published May 15, 2025
The Giveaways and Contests by RafflePress WordPress plugin before 1.12.17 does not sanitise and... Moderate Unreviewed
CVE-2024-10107 was published May 15, 2025
The WP Google Review Slider WordPress plugin before 15.6 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2024-11109 was published May 15, 2025
The Photo Gallery, Images, Slider in Rbs Image Gallery WordPress plugin before 3.2.22 does not... Moderate Unreviewed
CVE-2024-10144 was published May 15, 2025
The Contact Form, Survey, Quiz & Popup Form Builder WordPress plugin before 1.7.1 does not... Moderate Unreviewed
CVE-2024-10504 was published May 15, 2025
The Social Slider Feed WordPress plugin before 2.2.9 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2024-10149 was published May 15, 2025
The Panorama WordPress plugin through 1.5.1 does not sanitise and escape some of its settings,... Moderate Unreviewed
CVE-2024-11843 was published May 15, 2025
The Responsive Contact Form Builder & Lead Generation Plugin WordPress plugin before 1.9.8 does... Moderate Unreviewed
CVE-2024-10475 was published May 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database