GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,934
Composer 4,780
Erlang 36
GitHub Actions 29
Go 2,344
Maven 5,665
npm 3,973
NuGet 719
pip 3,770
Pub 12
RubyGems 923
Rust 978
Swift 38

Unreviewed advisories

All unreviewed 260,064

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

108,621 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Google Language Translator plugin for WordPress is vulnerable to Reflected Cross-Site... High Unreviewed

CVE-2021-4452 was published Oct 16, 2024

The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to authorization... High Unreviewed

CVE-2020-36840 was published Oct 16, 2024

The Download Monitor plugin for WordPress is vulnerable to authorization bypass due to a missing... High Unreviewed

CVE-2022-4972 was published Oct 16, 2024

The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing... High Unreviewed

CVE-2024-45715 was published Oct 16, 2024

The The WP Popup Builder – Popup Forms and Marketing Lead Generation plugin for WordPress is... High Unreviewed

CVE-2024-9061 was published Oct 16, 2024

SolarWinds Serv-U is vulnerable to a directory traversal vulnerability where remote code... High Unreviewed

CVE-2024-45711 was published Oct 16, 2024

The File Manager Pro plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... High Unreviewed

CVE-2024-8507 was published Oct 16, 2024

The File Manager Pro plugin for WordPress is vulnerable to Limited JavaScript File Upload in all... High Unreviewed

CVE-2024-8918 was published Oct 16, 2024

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized... High Unreviewed

CVE-2023-7291 was published Oct 16, 2024

The File Manager Pro plugin for WordPress is vulnerable to arbitrary backup file downloads and... High Unreviewed

CVE-2024-8746 was published Oct 16, 2024

Users logged into the Apache CloudStack's web interface can be tricked to submit malicious CSRF... High Unreviewed

CVE-2024-45693 was published Oct 16, 2024

Insecure Default Initialization of Resource vulnerability in Apache Solr High

CVE-2024-45217 was published for org.apache.solr:solr (Maven) Oct 16, 2024

Account users in Apache CloudStack by default are allowed to upload and register templates for... High Unreviewed

CVE-2024-45219 was published Oct 16, 2024

SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege... High Unreviewed

CVE-2024-45710 was published Oct 16, 2024

The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2020-36842 was published Oct 16, 2024

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized... High Unreviewed

CVE-2023-7294 was published Oct 16, 2024

The Post Grid plugin for WordPress is vulnerable to blind SQL Injection via post metadata in... High Unreviewed

CVE-2021-4450 was published Oct 16, 2024

The Essential Addons for Elementor plugin for WordPress is vulnerable to privilege escalation in... High Unreviewed

CVE-2021-4447 was published Oct 16, 2024

The Facebook Chat Plugin for WordPress is vulnerable to authorization bypass due to a missing... High Unreviewed

CVE-2020-36838 was published Oct 16, 2024

The ShopWP plugin for WordPress is vulnerable to authorization bypass due to a missing capability... High Unreviewed

CVE-2019-25214 was published Oct 16, 2024

The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... High Unreviewed

CVE-2017-20192 was published Oct 16, 2024

The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file... High Unreviewed

CVE-2019-25215 was published Oct 16, 2024

The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery... High Unreviewed

CVE-2012-10018 was published Oct 16, 2024

The WP Lead Plus X plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions... High Unreviewed

CVE-2020-36839 was published Oct 16, 2024

The Rich Review plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the POST... High Unreviewed

CVE-2019-25216 was published Oct 16, 2024

Previous 1 2 … 393 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

108,621 advisories