Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,678
Erlang
29
GitHub Actions
16
Go
1,707
Maven
4,940
npm
3,471
NuGet
603
pip
2,993
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+

107,408 advisories

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has... Moderate Unreviewed
CVE-2024-5233 was published May 23, 2024
A vulnerability classified as critical was found in Campcodes Complete Web-Based School... Moderate Unreviewed
CVE-2024-5236 was published May 23, 2024
The Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress... Moderate Unreviewed
CVE-2024-3626 was published May 23, 2024
The Brizy – Page Builder plugin for WordPress is vulnerable to unauthorized plugin setting update... Moderate Unreviewed
CVE-2024-3711 was published May 23, 2024
The RomethemeForm For Elementor plugin for WordPress is vulnerable to unauthorized access and... Moderate Unreviewed
CVE-2023-6325 was published May 23, 2024
A vulnerability classified as critical has been found in Campcodes Complete Web-Based School... Moderate Unreviewed
CVE-2024-5235 was published May 23, 2024
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-4431 was published May 23, 2024
The WP DSGVO Tools (GDPR) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-3201 was published May 23, 2024
The jQuery T(-) Countdown Widget plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-4783 was published May 23, 2024
The PayPal Pay Now, Buy Now, Donation and Cart Buttons Shortcode plugin for WordPress is... Moderate Unreviewed
CVE-2024-3065 was published May 23, 2024
The Awesome Contact Form7 for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-4486 was published May 23, 2024
The wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin plugin for... Moderate Unreviewed
CVE-2024-4895 was published May 23, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and... Moderate Unreviewed
CVE-2024-5231 was published May 23, 2024
A vulnerability has been found in EnvaySoft FleetCart up to 4.1.1 and classified as problematic.... Moderate Unreviewed
CVE-2024-5230 was published May 23, 2024
The WPCafe – Restaurant Menu, Online Ordering for WooCommerce, Pickup / Delivery and Table... Moderate Unreviewed
CVE-2024-1855 was published May 23, 2024
The iframe plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's... Moderate Unreviewed
CVE-2023-6844 was published May 23, 2024
An SQL Injection vulnerability in a web component of EPMM versions before 12.1.0.0 allows an... Moderate Unreviewed
CVE-2023-46806 was published May 23, 2024
An SQL Injection vulnerability in web component of EPMM before 12.1.0.0 allows an authenticated... Moderate Unreviewed
CVE-2023-46807 was published May 23, 2024
A local privilege escalation vulnerability in EPMM before 12.1.0.0 allows an authenticated local... Moderate Unreviewed
CVE-2024-22026 was published May 23, 2024
IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain... Moderate Unreviewed
CVE-2024-31894 was published May 22, 2024
IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain... Moderate Unreviewed
CVE-2024-31895 was published May 22, 2024
IBM App Connect Enterprise 12.0.1.0 through 12.0.12.1 could allow an authenticated user to obtain... Moderate Unreviewed
CVE-2024-31893 was published May 22, 2024
IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 integration... Moderate Unreviewed
CVE-2024-31904 was published May 22, 2024
Silverstripe XSS vulnerability via VirtualPage Moderate
GHSA-r97r-64vp-fghm was published for silverstripe/cms (Composer) May 22, 2024
Dapr API Token Exposure Moderate
CVE-2024-35223 was published for github.com/dapr/dapr (Go) May 22, 2024
elena-kolevska artursouza
ProTip! Advisories are also available from the GraphQL API