GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,413

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,419 advisories

Filter by severity

Sort by

Least recently updated

The WP Membership plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed

CVE-2024-10547 was published Nov 9, 2024

The WordPress User Extra Fields plugin for WordPress is vulnerable to arbitrary file uploads due... Critical Unreviewed

CVE-2024-10801 was published Nov 9, 2024

The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed

CVE-2024-10627 was published Nov 9, 2024

There exists an auth bypass in Google Quickshare where an attacker can upload an unknown file... Moderate Unreviewed

CVE-2024-10668 was published Nov 7, 2024

The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2024-8615 was published Nov 6, 2024

The mFolio Lite plugin for WordPress is vulnerable to file uploads due to a missing capability... Critical Unreviewed

CVE-2024-9307 was published Nov 6, 2024

The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2024-8614 was published Nov 6, 2024

A vulnerability classified as critical was found in Codezips Online Institute Management System... Moderate Unreviewed

CVE-2024-10765 was published Nov 4, 2024

A vulnerability classified as critical has been found in Codezips Online Institute Management... Moderate Unreviewed

CVE-2024-10764 was published Nov 4, 2024

A vulnerability, which was classified as critical, has been found in Codezips Free Exam Hall... Moderate Unreviewed

CVE-2024-10766 was published Nov 4, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Helloprint Plug your WooCommerce... Critical Unreviewed

CVE-2024-50525 was published Nov 4, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in mahlamusa Multi Purpose Mail... Critical Unreviewed

CVE-2024-50526 was published Nov 4, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Stacks Stacks Mobile App Builder... Critical Unreviewed

CVE-2024-50527 was published Nov 4, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Rudra Innnovative Software... Critical Unreviewed

CVE-2024-50529 was published Nov 4, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Myriad Solutionz Stars SMTP... Critical Unreviewed

CVE-2024-50530 was published Nov 4, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in David F. Carr RSVPMaker for... Critical Unreviewed

CVE-2024-50531 was published Nov 4, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in RainbowLink Inc. All Post... Critical Unreviewed

CVE-2024-50523 was published Nov 4, 2024

Studio-42 eLfinder 2.1.62 is vulnerable to Remote Code Execution (RCE) as there is no restriction... Critical Unreviewed

CVE-2023-52044 was published Oct 31, 2024

The AI Power: Complete AI Pack plugin for WordPress is vulnerable to arbitrary file uploads due... Critical Unreviewed

CVE-2024-10392 was published Oct 31, 2024

Unrestricted File Upload in the Discussions tab in Operately v.0.1.0 allows a privileged user to... High Unreviewed

CVE-2024-48093 was published Oct 30, 2024

icecms <=3.4.7 has a File Upload vulnerability in FileUtils.java,uploadFile. Critical Unreviewed

CVE-2024-48202 was published Oct 30, 2024

*Unrestricted file upload in /SASStudio/SASStudio/sasexec/{sessionID}/{InternalPath} in SAS... High Unreviewed

CVE-2024-48734 was published Oct 30, 2024

An Unrestricted File Upload vulnerability exists in Sage 1000 v7.0.0, which allows authorized... High Unreviewed

CVE-2024-48646 was published Oct 30, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in David DONISA WP donimedia... Critical Unreviewed

CVE-2024-50511 was published Oct 30, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Web and Print Design AR For... Critical Unreviewed

CVE-2024-50510 was published Oct 30, 2024

Previous 1 2 3 4 5 … 96 97 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,419 advisories