GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
2,524 advisories
Filter by severity
The DirectoryPress – Business Directory And Classified Ad Listing plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-10584
was published
Dec 24, 2024
IBM Cognos Analytics 11.2.0 through 11.2.4 FP4 and
12.0.0 through 12.0.4
could be vulnerable...
High
Unreviewed
CVE-2024-40695
was published
Dec 20, 2024
There is an unrestricted file upload vulnerability where it is possible for an authenticated user...
High
Unreviewed
CVE-2024-12700
was published
Dec 20, 2024
A unrestricted upload of file with dangerous type vulnerability in epaper draft function in...
Critical
Unreviewed
CVE-2024-11984
was published
Dec 19, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a...
Critical
Unreviewed
CVE-2024-56052
was published
Dec 18, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a...
Critical
Unreviewed
CVE-2024-56054
was published
Dec 18, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a...
Critical
Unreviewed
CVE-2024-56057
was published
Dec 18, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a...
Critical
Unreviewed
CVE-2024-56050
was published
Dec 18, 2024
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component...
Moderate
Unreviewed
CVE-2024-55514
was published
Dec 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in SeedProd LLC SeedProd Pro allows...
Critical
Unreviewed
CVE-2024-54285
was published
Dec 16, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in SuitePlugins Video & Photo...
Critical
Unreviewed
CVE-2024-54370
was published
Dec 16, 2024
The Crafthemes Demo Import plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-9698
was published
Dec 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Siddharth Nagar Import Export...
Critical
Unreviewed
CVE-2024-54262
was published
Dec 13, 2024
The Super Backup & Clone - Migrate for WordPress plugin for WordPress is vulnerable to arbitrary...
Critical
Unreviewed
CVE-2024-9290
was published
Dec 13, 2024
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2024-12042
was published
Dec 13, 2024
The Opt-In Downloads plugin for WordPress is vulnerable to arbitrary file uploads due to missing...
High
Unreviewed
CVE-2024-10590
was published
Dec 12, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.2,...
Moderate
Unreviewed
CVE-2024-44220
was published
Dec 12, 2024
Apache Struts file upload logic is flawed
Critical
CVE-2024-53677
was published
for
org.apache.struts:struts2-core
(Maven)
Dec 11, 2024
If the attacker has access to a valid Poweruser session, remote code execution is possible...
High
Unreviewed
CVE-2024-47946
was published
Dec 10, 2024
An issue was discovered in Digi ConnectPort LTS before 1.4.12. A vulnerability in the file upload...
High
Unreviewed
CVE-2024-50625
was published
Dec 10, 2024
Kashipara E-learning Management System v1.0 is vulnerable to Remote Code Execution via File...
Critical
Unreviewed
CVE-2024-54918
was published
Dec 9, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Genetech Pie Register Premium...
Critical
Unreviewed
CVE-2024-53822
was published
Dec 9, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Revy allows Upload a...
Critical
Unreviewed
CVE-2024-54214
was published
Dec 6, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in POSIMYTH WDesignkit allows...
Moderate
Unreviewed
CVE-2024-53811
was published
Dec 6, 2024
The Pubnews theme for WordPress is vulnerable to unauthorized arbitrary plugin installation due...
High
Unreviewed
CVE-2024-10578
was published
Dec 6, 2024
ProTip!
Advisories are also available from the
GraphQL API