Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,057
Maven
5,000+
npm
3,742
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

111,385 advisories

Loading
Missing Authorization vulnerability in 10Web 10WebAnalytics allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2023-47807 was published Jan 2, 2025
Missing Authorization vulnerability in Porto Theme Porto Theme - Functionality allows Exploiting... Moderate Unreviewed
CVE-2023-48739 was published Jan 2, 2025
Sensitive information disclosure due to insecure folder permissions. The following products are... Moderate Unreviewed
CVE-2024-49385 was published Jan 2, 2025
Missing Authorization vulnerability in Repute InfoSystems ARMember Premium allows Exploiting... Moderate Unreviewed
CVE-2023-39994 was published Jan 2, 2025
Missing Authorization vulnerability in IDX IMPress Listings allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2023-45633 was published Jan 2, 2025
Missing Authorization vulnerability in LuckyWP LuckyWP Scripts Control allows Exploiting... Moderate Unreviewed
CVE-2023-47778 was published Jan 2, 2025
Missing Authorization vulnerability in Xtemos WoodMart allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2023-32240 was published Jan 2, 2025
Sensitive information disclosure due to missing authentication. The following products are... Moderate Unreviewed
CVE-2024-55538 was published Jan 2, 2025
Missing Authorization vulnerability in Putler / Storeapps Putler Connector for WooCommerce.This... Moderate Unreviewed
CVE-2023-40327 was published Jan 2, 2025
A vulnerability, which was classified as critical, was found in code-projects Chat System 1.0.... Moderate Unreviewed
CVE-2025-0171 was published Jan 2, 2025
Missing Authorization vulnerability in 10Web 10Web Map Builder for Google Maps allows Exploiting... Moderate Unreviewed
CVE-2023-45272 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Uncanny Owl Uncanny Toolkit Pro for LearnDash... Moderate Unreviewed
CVE-2024-37438 was published Jan 2, 2025
Missing Authorization vulnerability in Analytify.This issue affects Analytify: from n/a through 4... Moderate Unreviewed
CVE-2022-45830 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Creativthemes Point allows Cross Site Request... Moderate Unreviewed
CVE-2024-37931 was published Jan 2, 2025
Missing Authorization vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to... Moderate Unreviewed
CVE-2022-43476 was published Jan 2, 2025
A vulnerability classified as problematic has been found in Beijing Yunfan Internet Technology... Moderate Unreviewed
CVE-2024-13110 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Automattic WP Job Manager - Resume Manager... Moderate Unreviewed
CVE-2024-37241 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in BUDDYBOSS LLC BuddyBoss Theme allows Cross... Moderate Unreviewed
CVE-2024-37925 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in VolThemes Patricia Blog allows Cross Site... Moderate Unreviewed
CVE-2024-38732 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in MyThemeShop Schema Lite allows Cross Site... Moderate Unreviewed
CVE-2024-37452 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Marsian i-amaze allows Cross Site Request... Moderate Unreviewed
CVE-2024-38731 was published Jan 2, 2025
Missing Authorization vulnerability in Galleryape Gallery Images Ape allows Exploiting... Moderate Unreviewed
CVE-2022-41995 was published Jan 2, 2025
A vulnerability classified as critical was found in Beijing Yunfan Internet Technology Yunfan... Moderate Unreviewed
CVE-2024-13111 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Marsian allows Cross Site Request Forgery.This... Moderate Unreviewed
CVE-2024-38764 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56257 was published Jan 2, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database