GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,156

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

8,846 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Custom Post Limits plugin for WordPress is vulnerable to full path disclosure in all versions... Moderate Unreviewed

CVE-2024-6544 was published Sep 13, 2024

An issue in Texas Instruments Fusion Digital Power Designer v.7.10.1 allows a local attacker to... Moderate Unreviewed

CVE-2024-41629 was published Sep 12, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Utarit Information... High Unreviewed

CVE-2024-3305 was published Sep 12, 2024

Exposure of sensitive information due to incompatible policies issue exists in Pgpool-II. If a... High Unreviewed

CVE-2024-45624 was published Sep 12, 2024

An External XML Entity (XXE) vulnerability in the provisioning web service of Ivanti EPM before... High Unreviewed

CVE-2024-37397 was published Sep 12, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Payara Platform... Moderate Unreviewed

CVE-2024-8097 was published Sep 11, 2024

An unauthenticated Insecure Direct Object Reference (IDOR) to the database has been found in the... Critical Unreviewed

CVE-2024-27113 was published Sep 11, 2024

Loftware Spectrum through 4.6 exposes Sensitive Information (Logs) to an Unauthorized Actor. High Unreviewed

CVE-2023-37232 was published Sep 10, 2024

An exposure of sensitive information to an unauthorized actor in Fortinet FortiSandbox version 4... Moderate Unreviewed

CVE-2024-31490 was published Sep 10, 2024

A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All... Moderate Unreviewed

CVE-2024-37991 was published Sep 10, 2024

A vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service... Critical Unreviewed

CVE-2024-42019 was published Sep 7, 2024

An authentication bypass vulnerability can allow a low privileged attacker to access the NTLM... Critical Unreviewed

CVE-2024-38650 was published Sep 7, 2024

The Big File Uploads – Increase Maximum File Upload Size plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-8538 was published Sep 7, 2024

D-Link DIR-823G v1.0.2B05_20181207 is vulnerable to Information Disclosure. The device allows... High Unreviewed

CVE-2024-44408 was published Sep 6, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ariva Computer Accord... Critical Unreviewed

CVE-2024-1744 was published Sep 6, 2024

The Remember Me Controls plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed

CVE-2024-7415 was published Sep 6, 2024

A vulnerability, which was classified as problematic, was found in D-Link DNS-320 2.02b01. This... Moderate Unreviewed

CVE-2024-8461 was published Sep 5, 2024

A vulnerability, which was classified as problematic, has been found in D-Link DNS-320 2.02b01.... Moderate Unreviewed

CVE-2024-8460 was published Sep 5, 2024

The Ivory Search – WordPress Search Plugin plugin for WordPress is vulnerable to Information... Moderate Unreviewed

CVE-2024-6835 was published Sep 5, 2024

A vulnerability in Cisco Duo Epic for Hyperdrive could allow an authenticated, local attacker to... Moderate Unreviewed

CVE-2024-20503 was published Sep 4, 2024

A sensitive information disclosure vulnerability exists in ZZCMS v.2023 and before within the... Moderate Unreviewed

CVE-2024-44820 was published Sep 4, 2024

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2024-8106 was published Sep 4, 2024

Access control vulnerability in the camera framework module Impact: Successful exploitation of... Moderate Unreviewed

CVE-2024-45447 was published Sep 4, 2024

Permission control vulnerability in the software update module. Impact: Successful exploitation... Moderate Unreviewed

CVE-2024-45450 was published Sep 4, 2024

The Premium SEO Pack – WP SEO Plugin plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-3679 was published Aug 29, 2024

Previous 1…31…354 Next

Previous 1 2 … 29 30 31 32 33 … 353 354 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,846 advisories