GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
378 advisories
Filter by severity
The Avada (Fusion) Builder plugin for WordPress is vulnerable to Information Exposure in all...
Moderate
Unreviewed
CVE-2024-12335
was published
Dec 25, 2024
The Content No Cache: prevent specific content from being cached plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-12103
was published
Dec 24, 2024
The Full Screen Menu for Elementor plugin for WordPress is vulnerable to Information Exposure in...
Moderate
Unreviewed
CVE-2024-10797
was published
Dec 21, 2024
Oqtane Framework Insecure Direct Object Reference vulnerability
Moderate
CVE-2024-55471
was published
for
Oqtane.Framework
(NuGet)
Dec 20, 2024
An IDOR vulnerability in the edit-notes.php module of PHPGurukul Online Notes Sharing Management...
Moderate
Unreviewed
CVE-2024-55231
was published
Dec 19, 2024
The Events Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all...
Moderate
Unreviewed
CVE-2024-12061
was published
Dec 18, 2024
Authorization Bypass Through User-Controlled Key vulnerability in NextGeography NG Analyser...
Moderate
Unreviewed
CVE-2024-9819
was published
Dec 17, 2024
The Get Post Content Shortcode plugin for WordPress is vulnerable to Insecure Direct Object...
Moderate
Unreviewed
CVE-2024-12447
was published
Dec 14, 2024
The Shortcodes for Elementor plugin for WordPress is vulnerable to Information Exposure in all...
Moderate
Unreviewed
CVE-2024-10690
was published
Dec 14, 2024
The Rate My Post – Star Rating Plugin by FeedbackWP plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-12309
was published
Dec 13, 2024
The WP Timetics- AI-powered Appointment Booking Calendar and Online Scheduling Plugin plugin for...
Moderate
Unreviewed
CVE-2024-11275
was published
Dec 13, 2024
The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11181
was published
Dec 12, 2024
The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Sensitive...
Moderate
Unreviewed
CVE-2024-12059
was published
Dec 12, 2024
A vulnerability classified as problematic has been found in Dromara UJCMS up to 9.6.3. This...
Moderate
Unreviewed
CVE-2024-12483
was published
Dec 12, 2024
An object-level access control vulnerability in Unifiedtransform version 2.0 and potentially...
Moderate
Unreviewed
CVE-2024-12305
was published
Dec 9, 2024
The PowerPack Elementor Addons (Free Widgets, Extensions and Templates) plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10692
was published
Dec 6, 2024
The XLTab – Accordions and Tabs for Elementor Page Builder plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10689
was published
Dec 6, 2024
The AnyWhere Elementor plugin for WordPress is vulnerable to Information Exposure in all versions...
Moderate
Unreviewed
CVE-2024-10777
was published
Dec 5, 2024
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Information...
Moderate
Unreviewed
CVE-2024-10787
was published
Dec 4, 2024
The Dollie Hub – Build Your Own WordPress Cloud Platform plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-12099
was published
Dec 4, 2024
The Charity Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all...
Moderate
Unreviewed
CVE-2024-12062
was published
Dec 3, 2024
Spring Framework has Authorization Bypass for Case Sensitive Comparisons
Moderate
CVE-2024-38827
was published
for
org.springframework:spring-beans
(Maven)
Dec 2, 2024
The Restaurant & Cafe Addon for Elementor plugin for WordPress is vulnerable to Information...
Moderate
Unreviewed
CVE-2024-10780
was published
Nov 28, 2024
The Primary Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all...
Moderate
Unreviewed
CVE-2024-10670
was published
Nov 28, 2024
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Information...
Moderate
Unreviewed
CVE-2024-10798
was published
Nov 28, 2024
ProTip!
Advisories are also available from the
GraphQL API