Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

3,719 advisories

Loading
The Newsletter2Go plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed
CVE-2024-12618 was published Jan 9, 2025
The Bitly's WordPress Plugin plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed
CVE-2024-12616 was published Jan 9, 2025
The SKT Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to a... High Unreviewed
CVE-2024-12848 was published Jan 9, 2025
The MIMO Woocommerce Order Tracking plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-5769 was published Jan 9, 2025
The GS Insever Portfolio plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed
CVE-2024-12249 was published Jan 9, 2025
The Responsive FlipBook Plugin Wordpress plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-11929 was published Jan 9, 2025
An issue was discovered in GitLab CE/EE affecting all versions starting from 15.5 before 17.5.5,... Moderate Unreviewed
CVE-2024-12431 was published Jan 8, 2025
The Ultimate Gift Cards for WooCommerce – Create WooCommerce Gift Cards, Gift Vouchers, Redeem &... High Unreviewed
CVE-2024-11423 was published Jan 8, 2025
The Shopping Cart & eCommerce Store plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-12712 was published Jan 8, 2025
The AdForest theme for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed
CVE-2024-12855 was published Jan 8, 2025
The WordPress Webinar Plugin – WebinarPress plugin for WordPress is vulnerable to modification of... High Unreviewed
CVE-2024-11271 was published Jan 8, 2025
The WordPress Webinar Plugin – WebinarPress plugin for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2024-11270 was published Jan 8, 2025
The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-12713 was published Jan 8, 2025
The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-11916 was published Jan 8, 2025
The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to Remote Code... High Unreviewed
CVE-2024-11816 was published Jan 8, 2025
Missing Authorization vulnerability in ThemeSupport Hide Category by User Role for WooCommerce... Moderate Unreviewed
CVE-2024-56272 was published Jan 7, 2025
Missing Authorization vulnerability in SecureSubmit WP SecureSubmit.This issue affects WP... Moderate Unreviewed
CVE-2024-56270 was published Jan 7, 2025
Missing Authorization vulnerability in ORION Allada T-shirt Designer for Woocommerce.This issue... Moderate Unreviewed
CVE-2025-22363 was published Jan 7, 2025
Missing Authorization vulnerability in DearHive Social Media Share Buttons | MashShare.This issue... Moderate Unreviewed
CVE-2025-22319 was published Jan 7, 2025
Missing Authorization vulnerability in Lenderd 1003 Mortgage Application allows Exploiting... Moderate Unreviewed
CVE-2025-22591 was published Jan 7, 2025
Missing Authorization vulnerability in Beautiful Templates ST Gallery WP allows Exploiting... Moderate Unreviewed
CVE-2025-22543 was published Jan 7, 2025
Missing Authorization vulnerability in Lenderd 1003 Mortgage Application allows Accessing... High Unreviewed
CVE-2025-22592 was published Jan 7, 2025
Missing Authorization vulnerability in Ella van Durpe Slides & Presentations allows Exploiting... Moderate Unreviewed
CVE-2025-22534 was published Jan 7, 2025
Missing Authorization vulnerability in Etruel Developments LLC WP Delete Post Copies allows... Moderate Unreviewed
CVE-2025-22541 was published Jan 7, 2025
Missing Authorization vulnerability in Saoshyant.1994 Saoshyant Page Builder allows Exploiting... Moderate Unreviewed
CVE-2025-22560 was published Jan 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database