GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
24,208 advisories
Filter by severity
The Post to Pdf plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin...
Moderate
Unreviewed
CVE-2024-12446
was published
Dec 14, 2024
The bodi0`s Easy cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ...
Moderate
Unreviewed
CVE-2024-12628
was published
Dec 14, 2024
The Connatix Video Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-11883
was published
Dec 14, 2024
The Stripe Donation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-11879
was published
Dec 14, 2024
The The Permalinker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-11894
was published
Dec 14, 2024
The IDer Login for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
Moderate
Unreviewed
CVE-2024-11888
was published
Dec 14, 2024
The WooCommerce Cart Count Shortcode plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-12517
was published
Dec 14, 2024
The Smart PopUp Blaster plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-12458
was published
Dec 14, 2024
The My IDX Home Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-12502
was published
Dec 14, 2024
The Posts and Products Views for WooCommerce plugin for WordPress is vulnerable to Stored Cross...
Moderate
Unreviewed
CVE-2024-12448
was published
Dec 14, 2024
The States Map US plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-12523
was published
Dec 14, 2024
The WP Ad Guru – Banner ad, Responsive popup, Popup maker, Ad rotator & More plugin for WordPress...
Moderate
Unreviewed
CVE-2024-12411
was published
Dec 14, 2024
The Eveeno plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ...
Moderate
Unreviewed
CVE-2024-11752
was published
Dec 14, 2024
The Import Eventbrite Events plugin for WordPress is vulnerable to Reflected Cross-Site Scripting...
Moderate
Unreviewed
CVE-2024-12422
was published
Dec 14, 2024
The GeoDataSource Country Region DropDown plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-12474
was published
Dec 14, 2024
The Ganohrs Toggle Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
Moderate
Unreviewed
CVE-2024-12459
was published
Dec 14, 2024
The Simple Locator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-12501
was published
Dec 14, 2024
The Wp photo text slider 50 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-11884
was published
Dec 14, 2024
The Cricket Live Score plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-11877
was published
Dec 14, 2024
The My IDX Home Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-11889
was published
Dec 14, 2024
The Koalendar – Events & Appointments Booking Calendar plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11855
was published
Dec 14, 2024
The Bukza plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ...
Moderate
Unreviewed
CVE-2024-11759
was published
Dec 14, 2024
The Tabs Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up...
Moderate
Unreviewed
CVE-2024-11865
was published
Dec 14, 2024
The Kredeum NFTs, the easiest way to sell your NFTs directly on your WordPress site plugin for...
Moderate
Unreviewed
CVE-2024-11876
was published
Dec 14, 2024
The Companion Portfolio – Responsive Portfolio Plugin plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11867
was published
Dec 14, 2024
ProTip!
Advisories are also available from the
GraphQL API