GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,229 advisories
Filter by severity
A remote file inclusion (RFI) vulnerability in Simple College Website v1.0 allows attackers to...
Critical
Unreviewed
CVE-2022-40089
was published
Sep 23, 2022
An issue was discovered in Appalti & Contratti 9.12.2. The target web applications allow Local...
High
Unreviewed
CVE-2022-44786
was published
Nov 22, 2022
PHP Remote File Inclusion in GitHub repository tsolucio/corebos prior to 8.0.
Critical
Unreviewed
CVE-2022-4446
was published
Dec 13, 2022
PHP Remote File Inclusion in GitHub repository flatpressblog/flatpress prior to 1.3.
Critical
Unreviewed
CVE-2022-4606
was published
Dec 18, 2022
AgileBio Electronic Lab Notebook v4.234 was discovered to contain a local file inclusion...
High
Unreviewed
CVE-2023-24217
was published
Mar 7, 2023
PHP Remote File Inclusion in GitHub repository unilogies/bumsys prior to 2.1.1.
High
Unreviewed
CVE-2023-2551
was published
May 5, 2023
The wpForo Forum plugin for WordPress is vulnerable to Local File Include, Server-Side Request...
High
Unreviewed
CVE-2023-2249
was published
Jun 9, 2023
The Canto plugin for WordPress is vulnerable to Remote File Inclusion in versions up to, and...
Critical
Unreviewed
CVE-2023-3452
was published
Aug 12, 2023
An issue was discovered in Geomatika IsiGeo Web 6.0. It allows remote authenticated users to...
Moderate
Unreviewed
CVE-2023-23565
was published
Aug 22, 2023
The Dropbox Folder Share for WordPress is vulnerable to Local File Inclusion in versions up to,...
Critical
Unreviewed
CVE-2023-4488
was published
Oct 20, 2023
The PHP to Page plugin for WordPress is vulnerable Local File Inclusion to Remote Code Execution...
High
Unreviewed
CVE-2023-5199
was published
Oct 30, 2023
The Grid Plus plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and...
High
Unreviewed
CVE-2023-5250
was published
Oct 30, 2023
The HTML filter and csv-file search plugin for WordPress is vulnerable to Local File Inclusion in...
High
Unreviewed
CVE-2023-5099
was published
Oct 31, 2023
The News & Blog Designer Pack – WordPress Blog Plugin — (Blog Post Grid, Blog Post Slider, Blog...
High
Unreviewed
CVE-2023-5815
was published
Nov 22, 2023
The Import and export users and customers plugin for WordPress is vulnerable to Directory...
Moderate
Unreviewed
CVE-2023-6583
was published
Jan 11, 2024
Remote file inclusion vulnerability in FireEye Central Management affecting version 9.1.1.956704....
Moderate
Unreviewed
CVE-2024-0315
was published
Jan 15, 2024
A local file inclusion vulnerability in one of Trend Micro Apex Central's widgets could allow a...
High
Unreviewed
CVE-2023-52325
was published
Jan 23, 2024
The Shield Security – Smart Bot Blocking & Intrusion Prevention Security plugin for WordPress is...
Critical
Unreviewed
CVE-2023-6989
was published
Feb 6, 2024
The Restaurant Reservations plugin for WordPress is vulnerable to Local File Inclusion in all...
High
Unreviewed
CVE-2024-1382
was published
Mar 7, 2024
The MasterStudy LMS plugin for WordPress is vulnerable to Local File Inclusion in all versions up...
Critical
Unreviewed
CVE-2024-2411
was published
Mar 29, 2024
The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-3061
was published
Mar 29, 2024
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Local File Inclusion in...
High
Unreviewed
CVE-2024-2047
was published
Mar 30, 2024
Arbitrary file upload vulnerability in Sourcecodester Complete E-Commerce Site v1.0, allows...
Critical
Unreviewed
CVE-2024-30849
was published
Apr 5, 2024
The MasterStudy LMS plugin for WordPress is vulnerable to Local File Inclusion in all versions up...
Critical
Unreviewed
CVE-2024-3136
was published
Apr 9, 2024
A Local File Inclusion (LFI) vulnerability exists in the parisneo/lollms-webui application,...
Critical
Unreviewed
CVE-2024-1600
was published
Apr 10, 2024
ProTip!
Advisories are also available from the
GraphQL API