Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,776 advisories

Loading
An issue was discovered in GitLab EE affecting all versions starting from 16.11 prior to 17.0.5,... Moderate Unreviewed
CVE-2024-5067 was published Jul 25, 2024
The Optimize Images ALT Text (alt tag) & names for SEO using AI plugin for WordPress is... Moderate Unreviewed
CVE-2024-6571 was published Jul 24, 2024
The WP Meteor Website Speed Optimization Addon plugin for WordPress is vulnerable to Full Path... Moderate Unreviewed
CVE-2024-6553 was published Jul 24, 2024
Apache RocketMQ Vulnerable to Unauthorized Exposure of Sensitive Data Moderate
CVE-2024-23321 was published for org.apache.rocketmq:rocketmq-all (Maven) Jul 22, 2024
oscerd
Credited to oscerd
The Addonify – Quick View For WooCommerce plugin for WordPress is vulnerable to Full Path... Moderate Unreviewed
CVE-2024-6560 was published Jul 20, 2024
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Information Exposure in... Moderate Unreviewed
CVE-2024-6455 was published Jul 18, 2024
A vulnerability in the protocol handlers of Cisco Webex App could allow an unauthenticated,... Moderate Unreviewed
CVE-2024-20396 was published Jul 17, 2024
Silverstripe Reports are still accessible even when `canView()` returns false Moderate
CVE-2024-29885 was published for silverstripe/reports (Composer) Jul 17, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Moderate Unreviewed
CVE-2024-21140 was published Jul 17, 2024
An exposure of sensitive information vulnerability in GitHub Enterprise Server would allow an... Moderate Unreviewed
CVE-2024-6395 was published Jul 17, 2024
A Security Misconfiguration vulnerability in GitHub Enterprise Server allowed sensitive... Moderate Unreviewed
CVE-2024-6336 was published Jul 17, 2024
Exposure of Sensitive Information to an Unauthorized Access vulnerability in OpenText NetIQ... Moderate Unreviewed
CVE-2020-25836 was published Jul 17, 2024
@jmondi/url-to-png enables capture screenshot of localhost web services (unauthenticated pages) Moderate
CVE-2024-39919 was published for @jmondi/url-to-png (npm) Jul 15, 2024
realArcherL
Credited to realArcherL
An information disclosure vulnerability in SWG in versions 12.x prior to 12.2.10 and 11.x prior... Moderate Unreviewed
CVE-2024-6398 was published Jul 15, 2024
A vulnerability was found in Netgear WN604 up to 20240710. It has been rated as problematic.... Moderate Unreviewed
CVE-2024-6646 was published Jul 10, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ninja Team FileBird... Moderate Unreviewed
CVE-2024-37504 was published Jul 10, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Pauple Table &... Moderate Unreviewed
CVE-2024-37498 was published Jul 10, 2024
Decidim vulnerable to data disclosure through the embed feature Moderate
CVE-2024-27090 was published for decidim (RubyGems) Jul 10, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330... Moderate Unreviewed
CVE-2024-27362 was published Jul 9, 2024
vaeThink 1.0.2 is vulnerable to Information Disclosure via the system backend,access management... Moderate Unreviewed
CVE-2024-38970 was published Jul 9, 2024
Windows Kernel Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38041 was published Jul 9, 2024
Microsoft Outlook Spoofing Vulnerability Moderate Unreviewed
CVE-2024-38020 was published Jul 9, 2024
Microsoft Message Queuing Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38017 was published Jul 9, 2024
Windows Themes Spoofing Vulnerability Moderate Unreviewed
CVE-2024-38030 was published Jul 9, 2024
CSP violations generated links in the console tab of the developer tools, pointing to the... Moderate Unreviewed
CVE-2024-6612 was published Jul 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database