GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,979
Composer 4,785
Erlang 36
GitHub Actions 29
Go 2,358
Maven 5,673
npm 3,979
NuGet 720
pip 3,777
Pub 12
RubyGems 924
Rust 981
Swift 38

Unreviewed advisories

All unreviewed 260,738

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,004 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In imsservice, there is a possible way to write permission usage records of an app due to a... Moderate Unreviewed

CVE-2023-42671 was published Dec 4, 2023

Missing Authorization vulnerability in WPOmnia KB Support – WordPress Help Desk and Knowledge... Moderate Unreviewed

CVE-2023-37890 was published Nov 30, 2023

The WordPress Backup & Migration WordPress plugin before 1.4.4 does not authorize some AJAX... Moderate Unreviewed

CVE-2023-5737 was published Nov 27, 2023

The Seraphinite Accelerator WordPress plugin before 2.20.32 does not have authorisation and CSRF... Moderate Unreviewed

CVE-2023-5611 was published Nov 27, 2023

The Limit Login Attempts Reloaded WordPress plugin before 2.25.26 is missing authorization on the... Moderate Unreviewed

CVE-2023-5525 was published Nov 27, 2023

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2023-5411 was published Nov 22, 2023

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2023-5416 was published Nov 22, 2023

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2023-5386 was published Nov 22, 2023

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2023-5385 was published Nov 22, 2023

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2023-5387 was published Nov 22, 2023

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2023-5415 was published Nov 22, 2023

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2023-5417 was published Nov 22, 2023

The Funnelforms Free plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2023-5419 was published Nov 22, 2023

The UserPro plugin for WordPress is vulnerable to unauthorized access of data due to a missing... Moderate Unreviewed

CVE-2023-2448 was published Nov 22, 2023

Missing Authorization in GitHub repository pkp/pkp-lib prior to 3.3.0-16. Moderate Unreviewed

CVE-2023-5900 was published Nov 14, 2023

The ImageMapper plugin for WordPress is vulnerable to unauthorized loss of data due to a missing... Moderate Unreviewed

CVE-2023-5506 was published Nov 14, 2023

Prometheus metrics are available without authentication. These expose detailed and sensitive... Moderate Unreviewed

CVE-2023-6001 was published Nov 8, 2023

Submitty before v22.06.00 is vulnerable to Incorrect Access Control. An attacker can delete any... Moderate Unreviewed

CVE-2023-43194 was published Nov 3, 2023

In sim service, there is a possible way to write permission usage records of an app due to a... Moderate Unreviewed

CVE-2023-42655 was published Nov 1, 2023

In engineermode, there is a possible missing permission check. This could lead to local... Moderate Unreviewed

CVE-2023-42651 was published Nov 1, 2023

In engineermode, there is a possible missing permission check. This could lead to local... Moderate Unreviewed

CVE-2023-42650 was published Nov 1, 2023

In Ifaa service, there is a possible missing permission check. This could lead to local... Moderate Unreviewed

CVE-2023-42646 was published Nov 1, 2023

In engineermode, there is a possible missing permission check. This could lead to local... Moderate Unreviewed

CVE-2023-42652 was published Nov 1, 2023

In validationtools, there is a possible missing permission check. This could lead to local... Moderate Unreviewed

CVE-2023-42631 was published Nov 1, 2023

In engineermode, there is a possible missing permission check. This could lead to local... Moderate Unreviewed

CVE-2023-42648 was published Nov 1, 2023

Previous 1 2 … 87 88 89 90 91 … 120 121 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,004 advisories