GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,628
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,643
Maven 6,107
npm 4,268
NuGet 760
pip 4,062
Pub 12
RubyGems 956
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,133

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6,776 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in David Maucher Send... Moderate Unreviewed

CVE-2024-38760 was published Aug 13, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in MBE Worldwide S.P.A.... Moderate Unreviewed

CVE-2024-38742 was published Aug 13, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Weblizar Coming Soon... Moderate Unreviewed

CVE-2024-38756 was published Aug 13, 2024

Under certain conditions SAP Permit to Work allows an authenticated attacker to access... Moderate Unreviewed

CVE-2024-41736 was published Aug 13, 2024

In SAP Commerce, valid user accounts can be identified during the customer registration and login... Moderate Unreviewed

CVE-2024-41733 was published Aug 13, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wp2speed WP2Speed... Moderate Unreviewed

CVE-2024-37924 was published Aug 13, 2024

Exposure of Sensitive Information to an Unauthorized Actor, Missing Authorization vulnerability... Moderate Unreviewed

CVE-2024-37930 was published Aug 13, 2024

A vulnerability was found in Weaver e-cology 8. It has been classified as problematic. Affected... Moderate Unreviewed

CVE-2024-7704 was published Aug 12, 2024

The PDF Builder for WPForms plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed

CVE-2024-7414 was published Aug 12, 2024

The Linkify Text plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to... Moderate Unreviewed

CVE-2024-7382 was published Aug 12, 2024

The Obfuscate Email plugin for WordPress is vulnerable to Full Path Disclosure in all versions up... Moderate Unreviewed

CVE-2024-7413 was published Aug 12, 2024

The No Update Nag plugin for WordPress is vulnerable to Full Path Disclosure in all versions up... Moderate Unreviewed

CVE-2024-7412 was published Aug 12, 2024

The My Custom CSS PHP & ADS plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed

CVE-2024-7410 was published Aug 12, 2024

The Reveal Template plugin for WordPress is vulnerable to Full Path Disclosure in all versions up... Moderate Unreviewed

CVE-2024-7416 was published Aug 12, 2024

The affiliate-toolkit – WordPress Affiliate Plugin plugin for WordPress is vulnerable to Full... Moderate Unreviewed

CVE-2024-6562 was published Aug 12, 2024

Dorsett Controls InfoScan is vulnerable due to a leak of possible sensitive information through... Moderate Unreviewed

CVE-2024-42493 was published Aug 8, 2024

Dorsett Controls Central Server update server has potential information leaks with an... Moderate Unreviewed

CVE-2024-39287 was published Aug 8, 2024

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.9 before 17... Moderate Unreviewed

CVE-2024-7554 was published Aug 8, 2024

The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-6552 was published Aug 8, 2024

In Apache CloudStack 4.19.1.0, a regression in the network listing API allows unauthorised list... Moderate Unreviewed

CVE-2024-42222 was published Aug 7, 2024

An improper authentication vulnerability in web component of EPMM prior to 12.1.0.1 allows a... Moderate Unreviewed

CVE-2024-34788 was published Aug 7, 2024

Insertion of sensitive information into sent data issue exists in Cybozu Office 10.0.0 to 10.8.6,... Moderate Unreviewed

CVE-2024-39817 was published Aug 6, 2024

Apereo CAS vulnerable to credential leaks for LDAP authentication Moderate

CVE-2023-28857 was published for org.apereo.cas:cas-server-support-x509-core (Maven) Aug 5, 2024

openstack-heat may disclose sensitive information Moderate

CVE-2024-7319 was published for openstack-heat (pip) Aug 2, 2024

The Ebook Store plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to,... Moderate Unreviewed

CVE-2024-6567 was published Aug 2, 2024

Previous 1…26…272 Next

Previous 1 2 … 24 25 26 27 28 … 271 272 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,776 advisories