GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,755
Composer 4,856
Erlang 36
GitHub Actions 36
Go 2,488
Maven 5,911
npm 4,104
NuGet 735
pip 3,923
Pub 12
RubyGems 945
Rust 1,017
Swift 39

Unreviewed advisories

All unreviewed 268,406

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

111,315 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in Sanjay Singh Negi Floating Video Player allows... High Unreviewed

CVE-2024-54421 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Cyle Conoly WP-HideThat allows Stored XSS.This... High Unreviewed

CVE-2024-54415 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Linda MacPhee-Cobb Category of Posts allows... High Unreviewed

CVE-2024-54427 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in LionScripts.com LionScripts: Site Maintenance ... High Unreviewed

CVE-2024-54425 was published Dec 16, 2024

Missing Authorization vulnerability in Saul Morales Pacheco Banner System allows Exploiting... High Unreviewed

CVE-2024-54359 was published Dec 16, 2024

Server-Side Request Forgery (SSRF) vulnerability in SoftLab Radio Player allows Server Side... High Unreviewed

CVE-2024-54385 was published Dec 16, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-54374 was published Dec 16, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-54380 was published Dec 16, 2024

Missing Authorization vulnerability in Quietly Quietly Insights allows Privilege Escalation.This... High Unreviewed

CVE-2024-54378 was published Dec 16, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-54387 was published Dec 16, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-54375 was published Dec 16, 2024

Missing Authorization vulnerability in Blokhaus Minterpress allows Privilege Escalation.This... High Unreviewed

CVE-2024-54379 was published Dec 16, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-54364 was published Dec 16, 2024

Incorrect Privilege Assignment vulnerability in Halim KH Easy User Settings allows Privilege... High Unreviewed

CVE-2024-54365 was published Dec 16, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-54373 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Get Push Monkey LLC Push Monkey Pro – Web Push... High Unreviewed

CVE-2024-54386 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Phuc Pham Multiple Admin Emails allows Cross... High Unreviewed

CVE-2024-54388 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Eduardo Chiaro addWeather allows Cross Site... High Unreviewed

CVE-2024-54389 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Sabri Taieb Sogrid allows Privilege Escalation... High Unreviewed

CVE-2024-54352 was published Dec 16, 2024

Velocidex WinPmem versions below 4.1 suffer from an Out of Bounds Write vulnerability whereby an... High Unreviewed

CVE-2024-12668 was published Dec 16, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-54358 was published Dec 16, 2024

Velocidex WinPmem versions below 4.1 suffer from an Improper Input Validation vulnerability... High Unreviewed

CVE-2024-10972 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Micha I Plant A Tree allows Stored XSS.This... High Unreviewed

CVE-2024-54331 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in WPFactory WP Currency Exchange Rates allows... High Unreviewed

CVE-2024-54332 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in WPGear Hack-Info allows Stored XSS.This issue... High Unreviewed

CVE-2024-54353 was published Dec 16, 2024

Previous 1…396…400 Next

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

111,315 advisories