GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
728 advisories
Filter by severity
The WP Easy Post Types plugin for WordPress is vulnerable to unauthorized access, modification,...
High
Unreviewed
CVE-2024-10078
was published
Oct 18, 2024
Vulnerability in the Oracle Service Bus product of Oracle Fusion Middleware (component: OSB Core...
High
Unreviewed
CVE-2024-21246
was published
Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
High
Unreviewed
CVE-2024-21215
was published
Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
High
Unreviewed
CVE-2024-21234
was published
Oct 15, 2024
Vulnerability in the Oracle BI Publisher product of Oracle Analytics (component: Web Server). ...
High
Unreviewed
CVE-2024-21254
was published
Oct 15, 2024
Vulnerability in the Oracle Process Manufacturing Product Development product of Oracle E...
High
Unreviewed
CVE-2024-21250
was published
Oct 15, 2024
Vulnerability in the Oracle Product Hub product of Oracle E-Business Suite (component: Item...
High
Unreviewed
CVE-2024-21252
was published
Oct 15, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
High
Unreviewed
CVE-2023-7291
was published
Oct 16, 2024
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized...
High
Unreviewed
CVE-2023-7294
was published
Oct 16, 2024
The Download Monitor plugin for WordPress is vulnerable to authorization bypass due to a missing...
High
Unreviewed
CVE-2022-4972
was published
Oct 16, 2024
The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to authorization...
High
Unreviewed
CVE-2020-36840
was published
Oct 16, 2024
The Essential Addons for Elementor plugin for WordPress is vulnerable to privilege escalation in...
High
Unreviewed
CVE-2021-4447
was published
Oct 16, 2024
The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file...
High
Unreviewed
CVE-2019-25215
was published
Oct 16, 2024
The Product Filter by WooBeWoo plugin for WordPress is vulnerable to authorization bypass in...
High
Unreviewed
CVE-2021-4444
was published
Oct 16, 2024
The Kaswara Modern VC Addons plugin for WordPress is vulnerable to authorization bypass in...
High
Unreviewed
CVE-2021-4448
was published
Oct 16, 2024
The ShopWP plugin for WordPress is vulnerable to authorization bypass due to a missing capability...
High
Unreviewed
CVE-2019-25214
was published
Oct 16, 2024
Missing authorization in Power Platform allows an unauthenticated attacker to view sensitive...
High
Unreviewed
CVE-2024-38190
was published
Oct 16, 2024
In Splunk Enterprise versions below 9.3.1, and 9.2.0 versions below 9.2.3, and Splunk Cloud...
High
Unreviewed
CVE-2024-45732
was published
Oct 14, 2024
Vulnerability of missing permission verification for APIs in the Designed for Reliability (DFR)...
High
Unreviewed
CVE-2023-44113
was published
Dec 6, 2023
The Link Library WordPress plugin before 7.2.8 does not have authorisation in place when deleting...
High
Unreviewed
CVE-2021-25093
was published
Feb 2, 2022
Azure Stack Hyperconverged Infrastructure (HCI) Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38179
was published
Oct 8, 2024
Zoho ManageEngine PAM360 version 6601 is vulnerable to authorization vulnerability which allows a...
High
Unreviewed
CVE-2024-27312
was published
May 20, 2024
** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in D3D Security IP Camera due to usage...
High
Unreviewed
CVE-2024-47790
was published
Oct 4, 2024
The KB Support – WordPress Help Desk and Knowledge Base plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-8548
was published
Oct 1, 2024
The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to privilege escalation in...
High
Unreviewed
CVE-2024-8349
was published
Sep 25, 2024
ProTip!
Advisories are also available from the
GraphQL API