Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,526 advisories

Loading
The My Custom CSS PHP & ADS plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed
CVE-2024-7410 was published Aug 12, 2024
The Obfuscate Email plugin for WordPress is vulnerable to Full Path Disclosure in all versions up... Moderate Unreviewed
CVE-2024-7413 was published Aug 12, 2024
The Reveal Template plugin for WordPress is vulnerable to Full Path Disclosure in all versions up... Moderate Unreviewed
CVE-2024-7416 was published Aug 12, 2024
The PDF Builder for WPForms plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed
CVE-2024-7414 was published Aug 12, 2024
The Linkify Text plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to... Moderate Unreviewed
CVE-2024-7382 was published Aug 12, 2024
The affiliate-toolkit – WordPress Affiliate Plugin plugin for WordPress is vulnerable to Full... Moderate Unreviewed
CVE-2024-6562 was published Aug 12, 2024
Dorsett Controls InfoScan is vulnerable due to a leak of possible sensitive information through... Moderate Unreviewed
CVE-2024-42493 was published Aug 8, 2024
Dorsett Controls Central Server update server has potential information leaks with an... Moderate Unreviewed
CVE-2024-39287 was published Aug 8, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.9 before 17... Moderate Unreviewed
CVE-2024-7554 was published Aug 8, 2024
The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-6552 was published Aug 8, 2024
In Apache CloudStack 4.19.1.0, a regression in the network listing API allows unauthorised list... Moderate Unreviewed
CVE-2024-42222 was published Aug 7, 2024
An improper authentication vulnerability in web component of EPMM prior to 12.1.0.1 allows a... Moderate Unreviewed
CVE-2024-34788 was published Aug 7, 2024
The Ebook Store plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to,... Moderate Unreviewed
CVE-2024-6567 was published Aug 2, 2024
A vulnerability has been found in TVT DVR TD-2104TS-CL, DVR TD-2108TS-HP, Provision-ISR DVR SH... Moderate Unreviewed
CVE-2024-7339 was published Aug 1, 2024
The CTT Expresso para WooCommerce plugin for WordPress is vulnerable to sensitive information... Moderate Unreviewed
CVE-2024-6687 was published Aug 1, 2024
A vulnerability, which was classified as problematic, has been found in YouDianCMS 7. This issue... Moderate Unreviewed
CVE-2024-7328 was published Aug 1, 2024
AccuPOS - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2024-41701 was published Jul 30, 2024
Cybonet - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2024-41694 was published Jul 30, 2024
A vulnerability was found in TOTOLINK A3700R 9.1.2u.5822_B20200513 and classified as problematic.... Moderate Unreviewed
CVE-2024-7156 was published Jul 28, 2024
The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2024-5614 was published Jul 27, 2024
The Campaign Monitor for WordPress plugin for WordPress is vulnerable to Full Path Disclosure in... Moderate Unreviewed
CVE-2024-6569 was published Jul 27, 2024
The One Click Close Comments plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed
CVE-2024-6546 was published Jul 27, 2024
The Intelligence plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to... Moderate Unreviewed
CVE-2024-6573 was published Jul 27, 2024
The Admin Trim Interface plugin for WordPress is vulnerable to Full Path Disclosure in all... Moderate Unreviewed
CVE-2024-6545 was published Jul 27, 2024
The Add Admin CSS plugin for WordPress is vulnerable to Full Path Disclosure in all versions up... Moderate Unreviewed
CVE-2024-6547 was published Jul 27, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database