GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,496
Composer 4,170
Erlang 30
GitHub Actions 19
Go 1,981
Maven 5,155
npm 3,700
NuGet 656
pip 3,319
Pub 11
RubyGems 882
Rust 834
Swift 35

Unreviewed advisories

All unreviewed 232,959

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

232,959 advisories

Filter by severity

Sort by

Least recently updated

The Pricing Tables WordPress Plugin – Easy Pricing Tables plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-8323 was published Nov 6, 2024

A flaw was found in Ansible. The ansible-core `user` module can allow an unprivileged user to... Moderate Unreviewed

CVE-2024-9902 was published Nov 6, 2024

The MapPress Maps for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-10715 was published Nov 6, 2024

The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress... Moderate Unreviewed

CVE-2024-10168 was published Nov 6, 2024

The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2024-8615 was published Nov 6, 2024

The Video Gallery for WooCommerce plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2024-10535 was published Nov 6, 2024

The Heateor Social Login WordPress plugin for WordPress is vulnerable to authentication bypass in... High Unreviewed

CVE-2024-10020 was published Nov 6, 2024

The Tumult Hype Animations plugin for WordPress is vulnerable to unauthorized access of data due... Moderate Unreviewed

CVE-2024-10543 was published Nov 6, 2024

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress... High Unreviewed

CVE-2024-9946 was published Nov 6, 2024

The mFolio Lite plugin for WordPress is vulnerable to file uploads due to a missing capability... Critical Unreviewed

CVE-2024-9307 was published Nov 6, 2024

The EleForms – All In One Form Integration including DB for Elementor plugin for WordPress is... Moderate Unreviewed

CVE-2024-6626 was published Nov 6, 2024

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's... Unknown Unreviewed

CVE-2024-9681 was published Nov 6, 2024

Observable Response Discrepancy vulnerability in HumHub GmbH & Co. KG - HumHub on Linux allows:... Moderate Unreviewed

CVE-2024-52043 was published Nov 6, 2024

The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2024-8614 was published Nov 6, 2024

The Wp-ImageZoom WordPress plugin through 1.1.0 does not sanitise and escape some parameters... Unknown Unreviewed

CVE-2024-9934 was published Nov 6, 2024

The WP ULike WordPress plugin before 4.7.5 does not sanitise and escape some of its settings,... Unknown Unreviewed

CVE-2024-7879 was published Nov 6, 2024

Improper Access Control in Samsung Video Player prior to versions 7.3.29.1 in Android 12, 7.3.36... Moderate Unreviewed

CVE-2024-49404 was published Nov 6, 2024

Improper input validation in BluetoothAdapter prior to SMR Nov-2024 Release 1 allows local... Moderate Unreviewed

CVE-2024-34681 was published Nov 6, 2024

Improper access control in Samsung Voice Recorder prior to version 21.5.40.37 allows physical... Moderate Unreviewed

CVE-2024-49403 was published Nov 6, 2024

Use of implicit intent for sensitive communication in WlanTest prior to SMR Nov-2024 Release 1... Moderate Unreviewed

CVE-2024-34680 was published Nov 6, 2024

Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to... Moderate Unreviewed

CVE-2024-34679 was published Nov 6, 2024

Out-of-bounds write in usb driver prior to Firmware update Sep-2024 Release on Galaxy S24 allows... Moderate Unreviewed

CVE-2024-49408 was published Nov 6, 2024

Improper input validation in Settings Suggestions prior to SMR Nov-2024 Release 1 allows local... Moderate Unreviewed

CVE-2024-49401 was published Nov 6, 2024

Improper access control in Samsung Flow prior to version 4.9.15.7 allows physical attackers to... Moderate Unreviewed

CVE-2024-49407 was published Nov 6, 2024

Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local... Moderate Unreviewed

CVE-2024-34677 was published Nov 6, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

232,959 advisories