Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

95,183 advisories

Loading
The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to arbitrary... High Unreviewed
CVE-2024-10633 was published Jan 26, 2025
The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to... High Unreviewed
CVE-2024-10574 was published Jan 26, 2025
The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to SQL... High Unreviewed
CVE-2024-10628 was published Jan 26, 2025
xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free. High Unreviewed
CVE-2022-49043 was published Jan 26, 2025
Local privilege escalation due to incorrect assignment of privileges of temporary files in the... High Unreviewed
CVE-2025-0542 was published Jan 25, 2025
Local privilege escalation in G DATA Security Client due to incorrect assignment of privileges to... High Unreviewed
CVE-2025-0543 was published Jan 25, 2025
IBM Analytics Content Hub 2.0 is vulnerable to a buffer overflow due to improper return length... High Unreviewed
CVE-2024-39750 was published Jan 25, 2025
The Import WP – Export and Import CSV and XML files to WordPress plugin for WordPress is... High Unreviewed
CVE-2024-13562 was published Jan 25, 2025
The Custom Product Tabs Lite for WooCommerce plugin for WordPress is vulnerable to PHP Object... High Unreviewed
CVE-2024-12600 was published Jan 25, 2025
The ThemeREX Addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up... High Unreviewed
CVE-2025-0682 was published Jan 25, 2025
7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass... High Unreviewed
CVE-2025-0411 was published Jan 25, 2025
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via... High Unreviewed
CVE-2024-53588 was published Jan 24, 2025
Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password... High Unreviewed
CVE-2025-21102 was published Jan 8, 2025
A stack overflow in the sctp_server::sctp_receiver_thread component of OpenAirInterface CN5G AMF ... High Unreviewed
CVE-2024-24451 was published Jan 22, 2025
A NULL pointer dereference in the ngap_app::handle_receive routine of OpenAirInterface CN5G AMF ... High Unreviewed
CVE-2024-24442 was published Jan 22, 2025
Dell VxRail, versions 8.0.000 through 8.0.311, contain(s) a Plaintext Storage of a Password... High Unreviewed
CVE-2025-21111 was published Jan 8, 2025
The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed
CVE-2024-24423 was published Jan 22, 2025
A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20_multi. It has been rated as critical... High Unreviewed
CVE-2024-2805 was published Mar 22, 2024
A vulnerability was found in Rise Group Rise Mode Temp CPU 2.1. It has been classified as... High Unreviewed
CVE-2025-0707 was published Jan 24, 2025
kodbox 1.2.x through 1.3.7 has a Sensitive Information Leakage issue. High Unreviewed
CVE-2023-29790 was published May 22, 2023
A null pointer dereference vulnerability in the GlobalProtect gateway in Palo Alto Networks PAN... High Unreviewed
CVE-2024-2550 was published Nov 14, 2024
The Tutor LMS plugin for WordPress is vulnerable to time-based SQL Injection via the ‘question_id... High Unreviewed
CVE-2024-4318 was published May 16, 2024
In multiple places of AccessibilityService, there is a possible way to hide the app from the user... High Unreviewed
CVE-2023-21109 was published May 16, 2023
In __efi_rt_asm_wrapper of efi-rt-wrapper.S, there is a possible bypass of shadow stack... High Unreviewed
CVE-2023-21102 was published May 16, 2023
IBM Spectrum Virtualize 8.5, under certain circumstances, could disclose sensitive credential... High Unreviewed
CVE-2023-27870 was published May 11, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database