Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,464
Erlang
33
GitHub Actions
22
Go
2,163
Maven
5,000+
npm
3,821
NuGet
696
pip
3,502
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

247,576 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-54275 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-54264 was published Dec 13, 2024
Missing Authorization vulnerability in WPTaskForce WPCargo Track & Trace allows Exploiting... Moderate Unreviewed
CVE-2024-54271 was published Dec 13, 2024
Missing Authorization vulnerability in Plugin Devs News Ticker for Elementor allows Accessing... Moderate Unreviewed
CVE-2024-54278 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-54238 was published Dec 13, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Michael DUMONTET eewee admin custom allows... High Unreviewed
CVE-2024-54248 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-54244 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-54236 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-54243 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-54246 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-54277 was published Dec 13, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-54234 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-54235 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-54237 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-54245 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-54250 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-54240 was published Dec 13, 2024
Missing Authorization vulnerability in Appsbd Simple Notification allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2024-54242 was published Dec 13, 2024
Missing Authorization vulnerability in PINPOINT.WORLD Pinpoint Booking System allows Exploiting... Moderate Unreviewed
CVE-2024-54252 was published Dec 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-54266 was published Dec 13, 2024
Missing Authorization vulnerability in SiteOrigin SiteOrigin Widgets Bundle allows Exploiting... Moderate Unreviewed
CVE-2024-54268 was published Dec 13, 2024
Missing Authorization vulnerability in Themeum WP Crowdfunding allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2023-41870 was published Dec 13, 2024
Missing Authorization vulnerability in MailMunch MailChimp Forms by MailMunch allows Exploiting... Moderate Unreviewed
CVE-2023-40203 was published Dec 13, 2024
Missing Authorization vulnerability in BitPay BitPay Checkout for WooCommerce allows Exploiting... Moderate Unreviewed
CVE-2023-41803 was published Dec 13, 2024
Missing Authorization vulnerability in bqworks Slider Pro allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2023-41865 was published Dec 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database