Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

29,027 advisories

Loading
The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-10325 was published Nov 8, 2024
The myCred – Loyalty Points and Rewards plugin for WordPress and WooCommerce – Give Points, Ranks... Moderate Unreviewed
CVE-2024-10187 was published Nov 8, 2024
The Easy SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST... Moderate Unreviewed
CVE-2024-10269 was published Nov 8, 2024
The Registrations for the Events Calendar WordPress plugin before 2.12.4 does not sanitise and... Critical Unreviewed
CVE-2024-7982 was published Nov 8, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site... Moderate Unreviewed
CVE-2024-49523 was published Nov 8, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by a DOM-based Cross-Site... Moderate Unreviewed
CVE-2024-49524 was published Nov 8, 2024
The NLL com.nll.cb (aka ACR Phone) application through 0.330-playStore-NoAccessibility-arm8 for... Moderate Unreviewed
CVE-2024-36064 was published Nov 8, 2024
Inconsistent <plaintext> tag parsing allows for XSS in Froala WYSIWYG editor 4.3.0 and earlier. Moderate Unreviewed
CVE-2024-51434 was published Nov 8, 2024
A reflected Cross-Site Scripting (XSS) vulnerability has been identified in Zimbra Collaboration... Moderate Unreviewed
CVE-2024-50599 was published Nov 7, 2024
An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Clients can... High Unreviewed
CVE-2020-11926 was published Nov 7, 2024
The Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider)... Moderate Unreviewed
CVE-2024-8442 was published Nov 7, 2024
hibernate-validator Cross-site Scripting vulnerability Moderate
CVE-2023-1932 was published for org.hibernate.validator:hibernate-validator (Maven) Nov 7, 2024
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network... Moderate Unreviewed
CVE-2024-20514 was published Nov 6, 2024
A vulnerability in the web-based management interface of Cisco Unified Communications Manager ... Moderate Unreviewed
CVE-2024-20511 was published Nov 6, 2024
A vulnerability in the web UI of Cisco Desk Phone 9800 Series, Cisco IP Phone 6800, 7800, and... Moderate Unreviewed
CVE-2024-20534 was published Nov 6, 2024
A vulnerability in the web-based management interface of Cisco ISE could allow an unauthenticated... Moderate Unreviewed
CVE-2024-20530 was published Nov 6, 2024
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,... Moderate Unreviewed
CVE-2024-20487 was published Nov 6, 2024
A vulnerability in the web-based management interface of Cisco ISE could allow an unauthenticated... Moderate Unreviewed
CVE-2024-20525 was published Nov 6, 2024
A vulnerability in the web-based management interface of Cisco ISE could allow an unauthenticated... Moderate Unreviewed
CVE-2024-20538 was published Nov 6, 2024
A vulnerability in the web UI of Cisco Desk Phone 9800 Series, Cisco IP Phone 6800, 7800, and... Moderate Unreviewed
CVE-2024-20533 was published Nov 6, 2024
A vulnerability in the web-based management interface of Cisco Unified Contact Center Management... Moderate Unreviewed
CVE-2024-20540 was published Nov 6, 2024
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,... Moderate Unreviewed
CVE-2024-20539 was published Nov 6, 2024
UnoPim Cross-site Scripting vulnerability Moderate
CVE-2024-50637 was published for unopim/unopim (Composer) Nov 6, 2024
IBM Maximo Application Suite - Monitor Component 8.10.11, 8.11.8, and 9.0.0 is vulnerable to... Moderate Unreviewed
CVE-2024-35146 was published Nov 6, 2024
Improper Input Validation vulnerability in OpenText iManager allows Cross-Site Scripting (XSS).... High Unreviewed
CVE-2020-11859 was published Nov 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database