GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,936
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,154
NuGet 736
pip 3,953
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 270,169

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

37,068 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Vulnerability in Dulldusk's PHP File Manager affecting version 1.7.8. This vulnerability consists... Moderate Unreviewed

CVE-2024-5673 was published Jun 6, 2024

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce... Moderate Unreviewed

CVE-2024-5188 was published Jun 6, 2024

The Colibri Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-5038 was published Jun 6, 2024

The Qi Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's... Moderate Unreviewed

CVE-2024-5221 was published Jun 6, 2024

The Google CSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin... Moderate Unreviewed

CVE-2024-5656 was published Jun 6, 2024

The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-4458 was published Jun 6, 2024

The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-4459 was published Jun 6, 2024

The Qi Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-4364 was published Jun 6, 2024

The Rotating Tweets (Twitter widget and shortcode) plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2024-5141 was published Jun 6, 2024

The Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor... Moderate Unreviewed

CVE-2024-5161 was published Jun 6, 2024

The Materialis Companion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-4707 was published Jun 6, 2024

The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-5152 was published Jun 6, 2024

The SellKit – Funnel builder and checkout optimizer for WooCommerce to sell more, faster plugin... Moderate Unreviewed

CVE-2024-4608 was published Jun 6, 2024

The WordPress prettyPhoto plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-5162 was published Jun 6, 2024

The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-4212 was published Jun 6, 2024

The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-2922 was published Jun 6, 2024

The Easy Social Like Box – Popup – Sidebar Widget plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2024-5224 was published Jun 6, 2024

The Image Hover Effects for Elementor with Lightbox and Flipbox plugin for WordPress is... Moderate Unreviewed

CVE-2024-5001 was published Jun 6, 2024

The Custom Dash plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin... Moderate Unreviewed

CVE-2024-4942 was published Jun 6, 2024

The Simple Image Popup Shortcode plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-5342 was published Jun 6, 2024

The Clever Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-2350 was published Jun 6, 2024

The Testimonials Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-4705 was published Jun 6, 2024

The EasyAzon – Amazon Associates Affiliate Plugin plugin for WordPress is vulnerable to Reflected... Moderate Unreviewed

CVE-2023-6956 was published Jun 6, 2024

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component... High Unreviewed

CVE-2024-36670 was published Jun 5, 2024

A vulnerability in the web-based management interface of Cisco Finesse could allow an... Moderate Unreviewed

CVE-2024-20405 was published Jun 5, 2024

Previous 1…399400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

37,068 advisories