GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,486

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,526 advisories

Filter by severity

Sort by

Least recently updated

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StylemixThemes... Moderate Unreviewed

CVE-2024-47344 was published Oct 7, 2024

ZKteco – CWE 200 Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed

CVE-2024-45250 was published Oct 6, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in The Wikimedia... Moderate Unreviewed

CVE-2024-47848 was published Oct 5, 2024

A vulnerability in a logging function of Cisco Nexus Dashboard Fabric Controller (NDFC) and Cisco... Moderate Unreviewed

CVE-2024-20490 was published Oct 2, 2024

A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker... Moderate Unreviewed

CVE-2024-20491 was published Oct 2, 2024

TP-Link Tapo P125M and Kasa KP125M v1.0.3 was discovered to improperly validate certificates,... Moderate Unreviewed

CVE-2024-46548 was published Sep 30, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in TaxoPress WordPress... Moderate Unreviewed

CVE-2024-43237 was published Sep 25, 2024

The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Information Exposure in... Moderate Unreviewed

CVE-2024-8516 was published Sep 25, 2024

The MAS Static Content plugin for WordPress is vulnerable to Information Exposure in all versions... Moderate Unreviewed

CVE-2024-8483 was published Sep 25, 2024

The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for... Moderate Unreviewed

CVE-2024-7426 was published Sep 25, 2024

The Happy Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-8801 was published Sep 25, 2024

OMFLOW from The SYSCOM Group has a vulnerability involving the exposure of sensitive data. This... Moderate Unreviewed

CVE-2024-8969 was published Sep 18, 2024

OMFLOW from The SYSCOM Group does not properly restrict the query range of its data query... Moderate Unreviewed

CVE-2024-8780 was published Sep 16, 2024

Titan SFTP and Titan MFT Server 2.0.25.2426 and earlier have a vulnerability a vulnerability... Moderate Unreviewed

CVE-2024-44685 was published Sep 13, 2024

The Custom Post Limits plugin for WordPress is vulnerable to full path disclosure in all versions... Moderate Unreviewed

CVE-2024-6544 was published Sep 13, 2024

An issue in Texas Instruments Fusion Digital Power Designer v.7.10.1 allows a local attacker to... Moderate Unreviewed

CVE-2024-41629 was published Sep 12, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Payara Platform... Moderate Unreviewed

CVE-2024-8097 was published Sep 11, 2024

An exposure of sensitive information to an unauthorized actor in Fortinet FortiSandbox version 4... Moderate Unreviewed

CVE-2024-31490 was published Sep 10, 2024

A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All... Moderate Unreviewed

CVE-2024-37991 was published Sep 10, 2024

The Big File Uploads – Increase Maximum File Upload Size plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-8538 was published Sep 7, 2024

The Remember Me Controls plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed

CVE-2024-7415 was published Sep 6, 2024

A vulnerability, which was classified as problematic, was found in D-Link DNS-320 2.02b01. This... Moderate Unreviewed

CVE-2024-8461 was published Sep 5, 2024

A vulnerability, which was classified as problematic, has been found in D-Link DNS-320 2.02b01.... Moderate Unreviewed

CVE-2024-8460 was published Sep 5, 2024

The Ivory Search – WordPress Search Plugin plugin for WordPress is vulnerable to Information... Moderate Unreviewed

CVE-2024-6835 was published Sep 5, 2024

A vulnerability in Cisco Duo Epic for Hyperdrive could allow an authenticated, local attacker to... Moderate Unreviewed

CVE-2024-20503 was published Sep 4, 2024

Previous 1 2 3 4 5 … 221 222 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,526 advisories