Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,965
Erlang
29
GitHub Actions
16
Go
1,747
Maven
4,975
npm
3,507
NuGet
609
pip
3,072
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+

93,385 advisories

Loading
Missing Authorization vulnerability in POSIMYTH Nexter.This issue affects Nexter: from n/a... High Unreviewed
CVE-2023-45658 was published Jun 19, 2024
Missing Authorization vulnerability in ServMask All-in-One WP Migration Box Extension, ServMask... High Unreviewed
CVE-2023-40004 was published Jun 19, 2024
Missing Authorization vulnerability in Themify Themify Ultra.This issue affects Themify Ultra:... High Unreviewed
CVE-2023-46148 was published Jun 19, 2024
Missing Authorization vulnerability in Paid Memberships Pro Paid Memberships Pro CCBill Gateway... High Unreviewed
CVE-2023-40608 was published Jun 19, 2024
Missing Authorization vulnerability in Themify Themify Ultra.This issue affects Themify Ultra:... High Unreviewed
CVE-2023-46146 was published Jun 19, 2024
Missing Authorization vulnerability in Muffin Group Betheme.This issue affects Betheme: from n/a... High Unreviewed
CVE-2023-47770 was published Jun 19, 2024
The Photo Video Gallery Master plugin for WordPress is vulnerable to PHP Object Injection in all... High Unreviewed
CVE-2024-5724 was published Jun 19, 2024
The Photo Gallery, Images, Slider in Rbs Image Gallery plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-5343 was published Jun 19, 2024
The WP Magazine Modules Lite plugin for WordPress is vulnerable to Local File Inclusion in all... High Unreviewed
CVE-2024-5574 was published Jun 19, 2024
The Pexels: Free Stock Photos plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6132 was published Jun 19, 2024
The AliExpress Dropshipping with AliNext Lite plugin for WordPress is vulnerable to arbitrary... High Unreviewed
CVE-2024-2381 was published Jun 19, 2024
The Login with phone number plugin for WordPress is vulnerable to unauthorized password resets in... High Unreviewed
CVE-2024-6125 was published Jun 19, 2024
Actiontec WCB6200Q Multipart Boundary Stack-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2024-6144 was published Jun 19, 2024
Actiontec WCB6200Q uh_tcp_recv_content Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-6142 was published Jun 19, 2024
Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2024-6145 was published Jun 19, 2024
Actiontec WCB6200Q uh_tcp_recv_header Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-6143 was published Jun 19, 2024
Actiontec WCB6200Q uh_get_postdata_withupload Stack-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2024-6146 was published Jun 19, 2024
Dolibarr arbitrary file upload vulnerability High
CVE-2024-37821 was published for dolibarr/dolibarr (Composer) Jun 18, 2024
A potential weakness in AMD SPI protection features may allow a malicious attacker with Ring0 ... High Unreviewed
CVE-2022-23829 was published Jun 18, 2024
This High severity Information Disclosure vulnerability was introduced in versions 9.4.0, 9.12.0,... High Unreviewed
CVE-2024-21685 was published Jun 18, 2024
A vulnerability classified as critical has been found in itsourcecode Pool of Bethesda Online... High Unreviewed
CVE-2024-6111 was published Jun 18, 2024
A hard-coded password in the FileCatalyst TransferAgent can be found which can be used to unlock... High Unreviewed
CVE-2024-5275 was published Jun 18, 2024
A vulnerability classified as critical was found in itsourcecode Pool of Bethesda Online... High Unreviewed
CVE-2024-6112 was published Jun 18, 2024
A vulnerability classified as critical has been found in itsourcecode Monbela Tourist Inn Online... High Unreviewed
CVE-2024-6114 was published Jun 18, 2024
A vulnerability classified as critical was found in itsourcecode Simple Online Hotel Reservation... High Unreviewed
CVE-2024-6115 was published Jun 18, 2024
ProTip! Advisories are also available from the GraphQL API