Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

112,721 advisories

Loading
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-1392 was published Mar 13, 2024
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-1422 was published Mar 13, 2024
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-2091 was published Mar 28, 2024
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-1391 was published Mar 13, 2024
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-1393 was published Mar 13, 2024
The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-2539 was published Apr 10, 2024
The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-2655 was published Apr 10, 2024
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-2042 was published Mar 16, 2024
A buffer over-read in Ivanti Secure Access Client before 22.7R4 allows a local unauthenticated... Moderate Unreviewed
CVE-2024-9843 was published Nov 12, 2024
A vulnerability, which was classified as problematic, was found in code-projects Tourism... Moderate Unreviewed
CVE-2025-0538 was published Jan 17, 2025
A vulnerability classified as critical was found in 1000 Projects Attendance Tracking Management... Moderate Unreviewed
CVE-2025-0536 was published Jan 17, 2025
A vulnerability exists in Algo Edge up to 2.1.1 - a previously used (legacy) component of navify®... Moderate Unreviewed
CVE-2024-13026 was published Jan 17, 2025
A vulnerability, which was classified as problematic, has been found in code-projects Car Rental... Moderate Unreviewed
CVE-2025-0537 was published Jan 17, 2025
A vulnerability was found in 1000 Projects Campaign Management System Platform for Women 1.0. It... Moderate Unreviewed
CVE-2025-0534 was published Jan 17, 2025
A vulnerability classified as critical has been found in Codezips Gym Management System 1.0. This... Moderate Unreviewed
CVE-2025-0535 was published Jan 17, 2025
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21185 was published Jan 17, 2025
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as... Moderate Unreviewed
CVE-2025-0540 was published Jan 17, 2025
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-1239 was published Mar 16, 2024
The MasterStudy LMS plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed
CVE-2024-1904 was published Apr 9, 2024
The Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions plugin... Moderate Unreviewed
CVE-2024-0588 was published Apr 9, 2024
The Contact Form 7 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2024-2242 was published Mar 14, 2024
The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-1466 was published Apr 9, 2024
The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-1458 was published Apr 9, 2024
The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-1464 was published Apr 9, 2024
The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-1461 was published Apr 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database