GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,117
Composer 4,330
Erlang 31
GitHub Actions 21
Go 2,091
Maven 5,253
npm 3,756
NuGet 678
pip 3,443
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,059

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

112,908 advisories

Filter by severity

Sort by

Least recently updated

The XML for Google Merchant Center plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2024-13406 was published Jan 22, 2025

The AI Power: Complete AI Pack plugin for WordPress is vulnerable to unauthorized access due to a... Moderate Unreviewed

CVE-2024-13361 was published Jan 22, 2025

The Themify Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to... Moderate Unreviewed

CVE-2024-13319 was published Jan 22, 2025

The AI Power: Complete AI Pack plugin for WordPress is vulnerable to Server-Side Request Forgery... Moderate Unreviewed

CVE-2024-13360 was published Jan 22, 2025

The Stackable – Page Builder Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-12117 was published Jan 22, 2025

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... Moderate Unreviewed

CVE-2025-23237 was published Jan 22, 2025

The WPBot Pro Wordpress Chatbot plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2024-12879 was published Jan 22, 2025

The Ketchup Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-13590 was published Jan 22, 2025

The Picture Gallery – Frontend Image Uploads, AJAX Photo List plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-13584 was published Jan 22, 2025

The WP-Polls plugin for WordPress is vulnerable to SQL Injection via COOKIE in all versions up to... Moderate Unreviewed

CVE-2024-13426 was published Jan 22, 2025

Multiple relative path traversal vulnerabilities [CWE-23] in Fortinet FortiManager version 7.4.0... Moderate Unreviewed

CVE-2024-32116 was published Nov 12, 2024

A stack-based buffer overflow vulnerability [CWE-121] in Fortinet FortiManager version 7.4.0... Moderate Unreviewed

CVE-2024-31496 was published Nov 12, 2024

A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in... Moderate Unreviewed

CVE-2020-12819 was published Dec 19, 2024

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-2750 was published May 2, 2024

The The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-3199 was published May 2, 2024

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-3985 was published May 2, 2024

The The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-3197 was published May 2, 2024

The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress... Moderate Unreviewed

CVE-2024-3725 was published May 2, 2024

Under non-default configuration, a stack-based buffer overflow in FortiOS version 6.0.10 and... Moderate Unreviewed

CVE-2020-12820 was published Dec 19, 2024

The MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin for WordPress is... Moderate Unreviewed

CVE-2024-3942 was published May 2, 2024

The Element Pack Elementor Addons (Header Footer, Free Template Library, Grid, Carousel, Table,... Moderate Unreviewed

CVE-2024-1429 was published Apr 18, 2024

Heap-based buffer overflow in the get_sos function in jdmarker.c in libjpeg-turbo 1.2.0 allows... Moderate Unreviewed

CVE-2012-2806 was published May 17, 2022

** DISPUTED ** Race condition in Online Armor Premium 4.0.0.35 on Windows XP allows local users... Moderate Unreviewed

CVE-2010-5169 was published May 17, 2022

** DISPUTED ** GLib 2.31.8 and earlier, when the g_str_hash function is used, computes hash... Moderate Unreviewed

CVE-2012-0039 was published May 4, 2022

Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 6 through 9 allows remote... Moderate Unreviewed

CVE-2012-1872 was published May 13, 2022

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

112,908 advisories