Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,164
Erlang
30
GitHub Actions
19
Go
1,973
Maven
5,000+
npm
3,695
NuGet
654
pip
3,311
Pub
11
RubyGems
881
Rust
831
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,396 advisories

Loading
The AI Power: Complete AI Pack plugin for WordPress is vulnerable to arbitrary file uploads due... Critical Unreviewed
CVE-2024-10392 was published Oct 31, 2024
Unrestricted File Upload in the Discussions tab in Operately v.0.1.0 allows a privileged user to... High Unreviewed
CVE-2024-48093 was published Oct 30, 2024
icecms <=3.4.7 has a File Upload vulnerability in FileUtils.java,uploadFile. Critical Unreviewed
CVE-2024-48202 was published Oct 30, 2024
An Unrestricted File Upload vulnerability exists in Sage 1000 v7.0.0, which allows authorized... High Unreviewed
CVE-2024-48646 was published Oct 30, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in David DONISA WP donimedia... Critical Unreviewed
CVE-2024-50511 was published Oct 30, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Web and Print Design AR For... Critical Unreviewed
CVE-2024-50510 was published Oct 30, 2024
The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-7985 was published Oct 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in adirectory aDirectory allows... Critical Unreviewed
CVE-2024-50420 was published Oct 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Devsoft Baltic OÜ SurveyJS: Drag... Critical Unreviewed
CVE-2024-50427 was published Oct 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Ajar Productions Ajar in5 Embed... Critical Unreviewed
CVE-2024-50473 was published Oct 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in azexo Marketing Automation by... Critical Unreviewed
CVE-2024-50480 was published Oct 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Chetan Khandla Woocommerce... Critical Unreviewed
CVE-2024-50482 was published Oct 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in mahlamusa Multi Purpose Mail... Critical Unreviewed
CVE-2024-50484 was published Oct 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in masterhomepage Automatic... Critical Unreviewed
CVE-2024-50493 was published Oct 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Amin Omer Sudan Payment Gateway... Critical Unreviewed
CVE-2024-50494 was published Oct 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in WidgiLabs Plugin Propagator... Critical Unreviewed
CVE-2024-50495 was published Oct 28, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Web and Print Design AR For... Critical Unreviewed
CVE-2024-50496 was published Oct 28, 2024
File Upload vulnerability in Prison Management System v.1.0 allows a remote attacker to execute... High Unreviewed
CVE-2024-48594 was published Oct 28, 2024
A vulnerability classified as critical has been found in SourceCodester Attendance and Payroll... Moderate Unreviewed
CVE-2024-10420 was published Oct 27, 2024
A vulnerability, which was classified as critical, has been found in SourceCodester Online Hotel... Moderate Unreviewed
CVE-2024-10413 was published Oct 27, 2024
A vulnerability classified as critical was found in SourceCodester Online Hotel Reservation... Moderate Unreviewed
CVE-2024-10410 was published Oct 27, 2024
The Wux Blog Editor plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed
CVE-2024-9932 was published Oct 26, 2024
An issue in SourceCodester Purchase Order Management System v1.0 allows a remote attacker to... High Unreviewed
CVE-2024-48454 was published Oct 24, 2024
An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800,... High Unreviewed
CVE-2024-45263 was published Oct 24, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in ReneeCussack 3D Work In Progress... Critical Unreviewed
CVE-2024-49652 was published Oct 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database