GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
876 advisories
Filter by severity
DreamMaker from Interinfo has a Path Traversal vulnerability and does not restrict the types of...
Critical
Unreviewed
CVE-2024-11979
was published
Nov 29, 2024
The Tumult Hype Animations plugin for WordPress is vulnerable to arbitrary file uploads due to...
Critical
Unreviewed
CVE-2024-11082
was published
Nov 28, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Pathomation allows Upload a Web...
Critical
Unreviewed
CVE-2024-52490
was published
Nov 28, 2024
HkCms <= v2.3.2.240702 is vulnerable to file upload in the getFileName method in /app/common...
Critical
Unreviewed
CVE-2024-52677
was published
Nov 20, 2024
Permissions vulnerability in Fuel-CMS v.1.4.6 allows a remote attacker to execute arbitrary code...
Critical
Unreviewed
CVE-2020-22151
was published
Jul 3, 2023
The WooCommerce Upload Files WordPress plugin before 59.4 ran a single sanitization pass to...
Critical
Unreviewed
CVE-2021-24171
was published
May 24, 2022
The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file...
Critical
Unreviewed
CVE-2024-9659
was published
Nov 23, 2024
The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to arbitrary file...
Critical
Unreviewed
CVE-2024-9942
was published
Nov 23, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Anton Hoelstad WP Quick Setup...
Critical
Unreviewed
CVE-2024-52429
was published
Nov 18, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Davor Zeljkovic Convert...
Critical
Unreviewed
CVE-2024-52397
was published
Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Wibergs Web CSV to html allows...
Critical
Unreviewed
CVE-2024-52406
was published
Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Bikram Joshi B-Banner Slider...
Critical
Unreviewed
CVE-2024-52405
was published
Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Halyra CDI.This issue affects...
Critical
Unreviewed
CVE-2024-52398
was published
Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in codeSavory BasePress Migration...
Critical
Unreviewed
CVE-2024-52407
was published
Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Subhasis Laha Gallerio allows...
Critical
Unreviewed
CVE-2024-52400
was published
Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Team PushAssist Push...
Critical
Unreviewed
CVE-2024-52408
was published
Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Clarisse K. Writer Helper allows...
Critical
Unreviewed
CVE-2024-52399
was published
Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Bigfive CF7 Reply Manager.This...
Critical
Unreviewed
CVE-2024-52404
was published
Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in WPExperts User Management allows...
Critical
Unreviewed
CVE-2024-52403
was published
Nov 17, 2024
The Backup and Staging by WP Time Capsule plugin for WordPress is vulnerable to arbitrary file...
Critical
Unreviewed
CVE-2024-8856
was published
Nov 16, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Optimal Access Inc. KBucket...
Critical
Unreviewed
CVE-2024-52369
was published
Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Hive Support Hive Support –...
Critical
Unreviewed
CVE-2024-52370
was published
Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Softpulse Infotech Picsmize...
Critical
Unreviewed
CVE-2024-52380
was published
Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in DoThatTask Do That Task allows...
Critical
Unreviewed
CVE-2024-52374
was published
Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in cmsMinds Boat Rental Plugin for...
Critical
Unreviewed
CVE-2024-52376
was published
Nov 14, 2024
ProTip!
Advisories are also available from the
GraphQL API