GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
1,246 advisories
Filter by severity
The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel,...
Moderate
Unreviewed
CVE-2024-4359
was published
Aug 12, 2024
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Local File Inclusion...
High
Unreviewed
CVE-2024-6589
was published
Jul 25, 2024
This High severity File Inclusion vulnerability was introduced in versions 9.0.0, 9.1.0, 9.2.0, 9...
High
Unreviewed
CVE-2024-21687
was published
Jul 16, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in N...
High
Unreviewed
CVE-2024-38735
was published
Jul 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-37520
was published
Jul 9, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-37410
was published
Jul 9, 2024
Local File Inclusion vulnerability in LA-Studio LA-Studio Element Kit for Elementor via ...
High
Unreviewed
CVE-2024-37479
was published
Jul 2, 2024
The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce...
High
Unreviewed
CVE-2024-5431
was published
Jun 25, 2024
The Plus Addons for Elementor Page Builder plugin for WordPress is vulnerable to Local File...
High
Unreviewed
CVE-2024-5455
was published
Jun 21, 2024
The WP Blog Post Layouts plugin for WordPress is vulnerable to Local File Inclusion in all...
High
Unreviewed
CVE-2024-5503
was published
Jun 21, 2024
The WP Magazine Modules Lite plugin for WordPress is vulnerable to Local File Inclusion in all...
High
Unreviewed
CVE-2024-5574
was published
Jun 19, 2024
The Video Gallery – YouTube Playlist, Channel Gallery by YotuWP plugin for WordPress is...
Moderate
Unreviewed
CVE-2024-4551
was published
Jun 15, 2024
The Video Gallery – YouTube Playlist, Channel Gallery by YotuWP plugin for WordPress is...
Critical
Unreviewed
CVE-2024-4258
was published
Jun 15, 2024
The tagDiv Composer plugin for WordPress is vulnerable to Local File Inclusion in all versions up...
High
Unreviewed
CVE-2024-3813
was published
Jun 15, 2024
The Where I Was, Where I Will Be plugin for WordPress is vulnerable to Remote File Inclusion in...
Critical
Unreviewed
CVE-2024-5577
was published
Jun 14, 2024
The Canto plugin for WordPress is vulnerable to Remote File Inclusion in all versions up to, and...
Critical
Unreviewed
CVE-2024-4936
was published
Jun 14, 2024
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Moderate
Unreviewed
CVE-2024-35650
was published
Jun 10, 2024
The Qi Addons For Elementor plugin for WordPress is vulnerable to Remote File Inclusion in all...
High
Unreviewed
CVE-2024-4887
was published
Jun 7, 2024
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Critical
Unreviewed
CVE-2024-35629
was published
Jun 4, 2024
Sourcecodester Gas Agency Management System v1.0 is vulnerable to arbitrary code execution via...
High
Unreviewed
CVE-2024-36569
was published
Jun 3, 2024
The Elements For Elementor plugin for WordPress is vulnerable to Local File Inclusion in all...
High
Unreviewed
CVE-2024-5348
was published
Jun 1, 2024
The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Local File...
High
Unreviewed
CVE-2024-3564
was published
Jun 1, 2024
The Responsive Owl Carousel for Elementor plugin for WordPress is vulnerable to Local File...
High
Unreviewed
CVE-2024-5345
was published
May 31, 2024
The Salient Core plugin for WordPress is vulnerable to Local File Inclusion in all versions up to...
High
Unreviewed
CVE-2024-3812
was published
May 18, 2024
The Salient Shortcodes plugin for WordPress is vulnerable to Local File Inclusion in all versions...
High
Unreviewed
CVE-2024-3810
was published
May 18, 2024
ProTip!
Advisories are also available from the
GraphQL API