Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,975 advisories

Loading
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2).... Moderate Unreviewed
CVE-2021-37190 was published May 24, 2022
The Popup Builder WordPress plugin through 4.1.15 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2023-5561 was published Oct 16, 2023
Apache Wicket allows attackers to check for third-party libraries Moderate
CVE-2014-0043 was published for org.apache.wicket:wicket-core (Maven) May 17, 2022
An information disclosure vulnerability in the component /socket.io/1/websocket/ of Soundcraft Ui... High Unreviewed
CVE-2025-28235 was published Apr 18, 2025
An issue in DataPatrol Screenshot watermark, printing watermark agent v.3.5.2.0 allows a... Moderate Unreviewed
CVE-2025-29316 was published Apr 17, 2025
In updatePublicMode of NotificationLockscreenUserManagerImpl.java, there is a possible way to... Moderate Unreviewed
CVE-2022-20497 was published Dec 13, 2022
The issue was addressed with improved memory handling. This issue is fixed in iOS 15.7.1 and... Moderate Unreviewed
CVE-2022-42810 was published Nov 2, 2022
The Memberpress plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-11299 was published Apr 22, 2025
"Newsletter subscriber management" (fp_newsletter) TYPO3 extension leaks subscriber data High
CVE-2022-47410 was published for fixpunkt/fp-newsletter (Composer) Dec 14, 2022
"Newsletter subscriber management" (fp_newsletter) TYPO3 extension leaks subscriber data High
CVE-2022-47411 was published for fixpunkt/fp-newsletter (Composer) Dec 14, 2022
A logic issue was addressed with improved state management. This issue is fixed in iOS 15.7.1 and... Moderate Unreviewed
CVE-2022-42817 was published Nov 2, 2022
An access issue was addressed with improved access restrictions. This issue is fixed in macOS Big... Moderate Unreviewed
CVE-2022-42819 was published Nov 2, 2022
This issue was addressed with improved data protection. This issue is fixed in macOS Ventura 13.... Moderate Unreviewed
CVE-2022-42815 was published Nov 2, 2022
This issue was addressed with improved data protection. This issue is fixed in macOS Ventura 13.... Moderate Unreviewed
CVE-2022-42818 was published Nov 2, 2022
This issue was addressed with improved data protection. This issue is fixed in iOS 16.2 and... Moderate Unreviewed
CVE-2022-42843 was published Dec 15, 2022
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor High Unreviewed
CVE-2025-23174 was published Apr 21, 2025
The Direct Mail (direct_mail) TYPO3 extension improperly discloses sensitive information High
CVE-2013-7400 was published for directmailteam/direct-mail (Composer) May 13, 2022
The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS... Moderate Unreviewed
CVE-2022-42852 was published Dec 15, 2022
The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS... Moderate Unreviewed
CVE-2022-46702 was published Dec 15, 2022
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6... Moderate Unreviewed
CVE-2022-42854 was published Dec 15, 2022
The issue was addressed with improved handling of caches. This issue is fixed in iOS 16.2 and... Moderate Unreviewed
CVE-2022-42866 was published Dec 15, 2022
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10... Moderate Unreviewed
CVE-2017-13868 was published May 14, 2022
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10... Moderate Unreviewed
CVE-2017-13869 was published May 14, 2022
Open Ticket Request System (OTRS) 4.0.x before 4.0.28, 5.0.x before 5.0.26, and 6.0.x before 6.0... High Unreviewed
CVE-2017-17476 was published May 13, 2022
This vulnerability allows remote attackers to disclose sensitive information on vulnerable... Moderate Unreviewed
CVE-2017-16588 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database