GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,562
Composer 4,198
Erlang 31
GitHub Actions 19
Go 1,986
Maven 5,163
npm 3,702
NuGet 660
pip 3,328
Pub 11
RubyGems 883
Rust 843
Swift 36

Unreviewed advisories

All unreviewed 233,892

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,430 advisories

Filter by severity

Sort by

Least recently updated

Unrestricted Upload of File with Dangerous Type vulnerability in Gora Tech LLC Cooked Pro.This... Critical Unreviewed

CVE-2024-49291 was published Oct 17, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in 酱茄 JiangQie Free Mini Program... Critical Unreviewed

CVE-2024-49314 was published Oct 17, 2024

The affected product is vulnerable to unrestricted file uploads, which may allow an attacker to... High Unreviewed

CVE-2024-49398 was published Oct 17, 2024

ClassCMS <=4.8 is vulnerable to file inclusion in the nowView method in/class/cms/cms.php, which... Critical Unreviewed

CVE-2024-48180 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Limb WordPress Gallery Plugin –... Critical Unreviewed

CVE-2024-49260 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Joshua Clayton Feed Comments... Critical Unreviewed

CVE-2024-49216 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Fliperrr Team Creates 3D... Critical Unreviewed

CVE-2024-48034 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Denis Azz Anonim Posting allows... Critical Unreviewed

CVE-2024-49257 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in xaraartech External featured... Critical Unreviewed

CVE-2024-48027 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in THATplugin Iconize.This issue... Critical Unreviewed

CVE-2024-47649 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Takayuki Imanishi ACF Images... Critical Unreviewed

CVE-2024-48035 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Shafiq Digital Lottery allows... Critical Unreviewed

CVE-2024-49242 was published Oct 16, 2024

The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2020-36842 was published Oct 16, 2024

The Frontend File Manager (versions < 4.0), N-Media Post Front-end Form (versions < 1.1) plugins... Critical Unreviewed

CVE-2016-15042 was published Oct 16, 2024

The File Manager Pro plugin for WordPress is vulnerable to arbitrary backup file downloads and... High Unreviewed

CVE-2024-8746 was published Oct 16, 2024

The File Manager Pro plugin for WordPress is vulnerable to Limited JavaScript File Upload in all... High Unreviewed

CVE-2024-8918 was published Oct 16, 2024

The ZoomSounds plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... Critical Unreviewed

CVE-2021-4449 was published Oct 16, 2024

The WordPress Mega Menu plugin for WordPress is vulnerable to Arbitrary File Creation in versions... Critical Unreviewed

CVE-2021-4443 was published Oct 16, 2024

File Upload vulnerability in DYCMS Open-Source Version v2.0.9.41 allows a remote attacker to... Critical Unreviewed

CVE-2024-48782 was published Oct 15, 2024

An issue in Wanxing Technology Yitu Project Management Kirin Edition 2.3.6 allows a remote... Critical Unreviewed

CVE-2024-48781 was published Oct 15, 2024

A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as... Moderate Unreviewed

CVE-2024-9975 was published Oct 15, 2024

Enterprise Cloud Database from Ragic does not properly validate the file type for uploads.... Critical Unreviewed

CVE-2024-9985 was published Oct 15, 2024

The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing... High Unreviewed

CVE-2024-9981 was published Oct 15, 2024

A vulnerability classified as critical was found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.2.0.... Moderate Unreviewed

CVE-2024-9904 was published Oct 13, 2024

A vulnerability classified as critical has been found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1... Moderate Unreviewed

CVE-2024-9903 was published Oct 13, 2024

Previous 1 2 3 4 5 6 … 97 98 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,430 advisories