GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,194
Composer 4,342
Erlang 31
GitHub Actions 22
Go 2,106
Maven 5,281
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,053

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,759 advisories

Filter by severity

Sort by

Least recently updated

The Safe Ai Malware Protection for WP plugin for WordPress is vulnerable to unauthorized access... High Unreviewed

CVE-2024-12269 was published Jan 30, 2025

The zStore Manager Basic plugin for WordPress is vulnerable to unauthorized loss of data due to a... Moderate Unreviewed

CVE-2024-13715 was published Jan 30, 2025

The Media Manager for UserPro plugin for WordPress is vulnerable to unauthorized modification of... High Unreviewed

CVE-2024-12821 was published Jan 30, 2025

The ECPay Ecommerce for WooCommerce plugin for WordPress is vulnerable to unauthorized loss of... Moderate Unreviewed

CVE-2024-13652 was published Jan 30, 2025

The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can... High Unreviewed

CVE-2024-12129 was published Jan 30, 2025

The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for... Moderate Unreviewed

CVE-2024-11583 was published Jan 30, 2025

The MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation &... High Unreviewed

CVE-2024-10591 was published Jan 30, 2025

The Media Manager for UserPro plugin for WordPress is vulnerable to unauthorized modification of... Critical Unreviewed

CVE-2024-12822 was published Jan 30, 2025

IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1... Moderate Unreviewed

CVE-2022-43916 was published Jan 30, 2025

Missing authorization in Microsoft Account allows an unauthorized attacker to elevate privileges... High Unreviewed

CVE-2025-21396 was published Jan 30, 2025

It was discovered, that redis, a persistent key-value database, due to a packaging issue, is... Critical Unreviewed

CVE-2022-0543 was published Feb 19, 2022

The issue was addressed with additional permissions checks. This issue is fixed in macOS Ventura... High Unreviewed

CVE-2023-27963 was published May 8, 2023

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur... Moderate Unreviewed

CVE-2021-30657 was published May 24, 2022

A permissions issue was addressed with improved validation. This issue is fixed in macOS Big Sur... High Unreviewed

CVE-2021-30713 was published May 24, 2022

The WP Radio – Worldwide Online Radio Stations Directory for WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2024-1042 was published Apr 10, 2024

In shouldSkipForInitialSUW of AdvancedPowerUsageDetail.java, there is a possible way to bypass... High Unreviewed

CVE-2024-40677 was published Jan 28, 2025

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-4875 was published May 21, 2024

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2, watchOS... Critical Unreviewed

CVE-2024-54530 was published Jan 28, 2025

The Colibri Page Builder plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed

CVE-2024-1870 was published Mar 9, 2024

The Plugin Groups plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed

CVE-2024-1108 was published Feb 21, 2024

The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content... Moderate Unreviewed

CVE-2024-1389 was published Feb 29, 2024

The web server of affected devices do not properly authenticate user request to the '/ClientArea... Moderate Unreviewed

CVE-2024-46887 was published Oct 8, 2024

The Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan... Moderate Unreviewed

CVE-2024-1861 was published Feb 28, 2024

Missing Authorization vulnerability in CodeSolz Better Find and Replace allows Privilege... High Unreviewed

CVE-2025-24734 was published Jan 27, 2025

Missing Authorization vulnerability in NotFound Bridge Core. This issue affects Bridge Core: from... Moderate Unreviewed

CVE-2025-24744 was published Jan 27, 2025

Previous 1 2 3 4 5 … 150 151 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,759 advisories