Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

30,237 advisories

Loading
The Eveeno plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ... Moderate Unreviewed
CVE-2024-11752 was published Dec 14, 2024
The Ganohrs Toggle Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-12459 was published Dec 14, 2024
The Simple Locator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-12501 was published Dec 14, 2024
The WP Ad Guru – Banner ad, Responsive popup, Popup maker, Ad rotator & More plugin for WordPress... Moderate Unreviewed
CVE-2024-12411 was published Dec 14, 2024
The Import Eventbrite Events plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed
CVE-2024-12422 was published Dec 14, 2024
The Filestack Official plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-11462 was published Dec 14, 2024
The Bukza plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ... Moderate Unreviewed
CVE-2024-11759 was published Dec 14, 2024
The Kredeum NFTs, the easiest way to sell your NFTs directly on your WordPress site plugin for... Moderate Unreviewed
CVE-2024-11876 was published Dec 14, 2024
The Cricket Live Score plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-11877 was published Dec 14, 2024
The My IDX Home Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-11889 was published Dec 14, 2024
The The Permalinker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-11894 was published Dec 14, 2024
The Plezi plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ... Moderate Unreviewed
CVE-2024-11763 was published Dec 14, 2024
The Post Carousel & Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-11770 was published Dec 14, 2024
The Koalendar – Events & Appointments Booking Calendar plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-11855 was published Dec 14, 2024
The Connatix Video Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-11883 was published Dec 14, 2024
The Companion Portfolio – Responsive Portfolio Plugin plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-11867 was published Dec 14, 2024
The Stripe Donation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-11879 was published Dec 14, 2024
The Tabs Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up... Moderate Unreviewed
CVE-2024-11865 was published Dec 14, 2024
The TCBD Popover plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed
CVE-2024-11751 was published Dec 14, 2024
The Wp photo text slider 50 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-11884 was published Dec 14, 2024
The IDer Login for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-11888 was published Dec 14, 2024
The IMS Countdown plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-11755 was published Dec 14, 2024
The glomex oEmbed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-11873 was published Dec 14, 2024
The Buk for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-11869 was published Dec 14, 2024
The Visualmodo Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-11095 was published Dec 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database