GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,878
Composer 4,266
Erlang 31
GitHub Actions 21
Go 2,035
Maven 5,219
npm 3,732
NuGet 662
pip 3,413
Pub 12
RubyGems 891
Rust 865
Swift 36

Unreviewed advisories

All unreviewed 237,815

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

30,088 advisories

Filter by severity

Sort by

Least recently updated

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to Stored Cross-Site... High Unreviewed

CVE-2024-11720 was published Dec 14, 2024

The bodi0`s Easy cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2024-12628 was published Dec 14, 2024

The Post to Pdf plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2024-12446 was published Dec 14, 2024

The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin... High Unreviewed

CVE-2024-10646 was published Dec 14, 2024

The Import Eventbrite Events plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed

CVE-2024-12422 was published Dec 14, 2024

The Eveeno plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ... Moderate Unreviewed

CVE-2024-11752 was published Dec 14, 2024

The Simple Locator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-12501 was published Dec 14, 2024

The GeoDataSource Country Region DropDown plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-12474 was published Dec 14, 2024

The Ganohrs Toggle Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-12459 was published Dec 14, 2024

The WooCommerce Cart Count Shortcode plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-12517 was published Dec 14, 2024

The Smart PopUp Blaster plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-12458 was published Dec 14, 2024

The My IDX Home Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-12502 was published Dec 14, 2024

The Posts and Products Views for WooCommerce plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-12448 was published Dec 14, 2024

The States Map US plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-12523 was published Dec 14, 2024

The WP Ad Guru – Banner ad, Responsive popup, Popup maker, Ad rotator & More plugin for WordPress... Moderate Unreviewed

CVE-2024-12411 was published Dec 14, 2024

The Filestack Official plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-11462 was published Dec 14, 2024

The TCBD Popover plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2024-11751 was published Dec 14, 2024

The Koalendar – Events & Appointments Booking Calendar plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-11855 was published Dec 14, 2024

The Bukza plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ... Moderate Unreviewed

CVE-2024-11759 was published Dec 14, 2024

The Connatix Video Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-11883 was published Dec 14, 2024

The Wp photo text slider 50 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-11884 was published Dec 14, 2024

The Tabs Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up... Moderate Unreviewed

CVE-2024-11865 was published Dec 14, 2024

The Cricket Live Score plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-11877 was published Dec 14, 2024

The Post Carousel & Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-11770 was published Dec 14, 2024

The Kredeum NFTs, the easiest way to sell your NFTs directly on your WordPress site plugin for... Moderate Unreviewed

CVE-2024-11876 was published Dec 14, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

30,088 advisories