GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,162

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

32,144 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Community by PeepSo WordPress plugin before 6.3.1.2 does not sanitise and escape various... Moderate Unreviewed

CVE-2024-0187 was published Jan 16, 2024

The EventON WordPress plugin before 4.5.5, EventON WordPress plugin before 2.2.7 do not have... Moderate Unreviewed

CVE-2024-0238 was published Jan 16, 2024

The Product Enquiry for WooCommerce WordPress plugin before 3.2 does not sanitise and escape the... Moderate Unreviewed

CVE-2023-7151 was published Jan 16, 2024

The EventON WordPress plugin before 2.2 does not sanitise and escape some of its settings, which... Moderate Unreviewed

CVE-2023-6046 was published Jan 16, 2024

The Ultimate Maps by Supsystic WordPress plugin before 1.2.16 does not sanitise and escape some... Moderate Unreviewed

CVE-2023-6732 was published Jan 16, 2024

The UpQode Google Maps WordPress plugin through 1.0.5 does not validate and escape some of its... Moderate Unreviewed

CVE-2023-0094 was published Jan 16, 2024

The Print Invoice & Delivery Notes for WooCommerce WordPress plugin before 4.7.2 is vulnerable to... Moderate Unreviewed

CVE-2023-0479 was published Jan 16, 2024

The WP Best Quiz WordPress plugin through 1.0 does not sanitize and escape some parameters, which... Moderate Unreviewed

CVE-2022-3739 was published Jan 16, 2024

The Lana Shortcodes WordPress plugin before 1.2.0 does not validate and escape some of its... Moderate Unreviewed

CVE-2023-3372 was published Jan 16, 2024

The IURNY by INDIGITALL WordPress plugin before 3.2.3 does not sanitise and escape some of its... Moderate Unreviewed

CVE-2023-3647 was published Jan 16, 2024

The Font Awesome 4 Menus WordPress plugin through 4.7.0 does not sanitise and escape some of its... Moderate Unreviewed

CVE-2022-3829 was published Jan 16, 2024

The Contact Form & Lead Form Elementor Builder WordPress plugin before 1.7.0 does not escape some... Moderate Unreviewed

CVE-2022-23179 was published Jan 16, 2024

The Calculated Fields Form WordPress plugin before 1.1.151 does not sanitise and escape some of... Moderate Unreviewed

CVE-2023-0389 was published Jan 16, 2024

The Seed Social WordPress plugin before 2.0.4 does not sanitise and escape some of its settings,... Moderate Unreviewed

CVE-2022-3836 was published Jan 16, 2024

The Dokan WordPress plugin before 3.6.4 allows vendors to inject arbitrary javascript in product... Moderate Unreviewed

CVE-2022-3194 was published Jan 16, 2024

The hiWeb Migration Simple WordPress plugin through 2.0.0.1 does not sanitise and escape a... Moderate Unreviewed

CVE-2023-0769 was published Jan 16, 2024

The Qubely WordPress plugin before 1.8.5 does not validate and escape some of its block options... Moderate Unreviewed

CVE-2023-0376 was published Jan 16, 2024

The Customer Reviews for WooCommerce WordPress plugin before 5.17.0 does not validate and escape... Moderate Unreviewed

CVE-2023-0079 was published Jan 16, 2024

The Slide Anything WordPress plugin before 2.3.47 does not properly sanitize or escape the slide... Moderate Unreviewed

CVE-2022-2413 was published Jan 16, 2024

The Simple Post WordPress plugin through 1.1 does not sanitize user input when an authenticated... Moderate Unreviewed

CVE-2021-24567 was published Jan 16, 2024

The Super Forms - Drag & Drop Form Builder WordPress plugin before 6.0.4 does not escape the... Moderate Unreviewed

CVE-2022-0402 was published Jan 16, 2024

The Qyrr WordPress plugin before 0.7 does not escape the data-uri of the QR Code when outputting... Moderate Unreviewed

CVE-2021-24559 was published Jan 16, 2024

The Advanced AJAX Product Filters WordPress plugin does not sanitise the 'term_id' POST parameter... Moderate Unreviewed

CVE-2021-24432 was published Jan 16, 2024

The simple sort&search WordPress plugin through 0.0.3 does not make sure that the indexurl... Moderate Unreviewed

CVE-2021-24433 was published Jan 16, 2024

A Cross-site scripting (XSS) vulnerability has been found on WIC1200, affecting version 1.1. An... Moderate Unreviewed

CVE-2024-0554 was published Jan 16, 2024

Previous 1…397…400 Next

Previous 1 2 … 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

32,144 advisories