GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,461 advisories
Filter by severity
OMFLOW from The SYSCOM Group has a vulnerability involving the exposure of sensitive data. This...
Moderate
Unreviewed
CVE-2024-8969
was published
Sep 18, 2024
OMFLOW from The SYSCOM Group does not properly restrict the query range of its data query...
Moderate
Unreviewed
CVE-2024-8780
was published
Sep 16, 2024
Titan SFTP and Titan MFT Server 2.0.25.2426 and earlier have a vulnerability a vulnerability...
Moderate
Unreviewed
CVE-2024-44685
was published
Sep 13, 2024
The Custom Post Limits plugin for WordPress is vulnerable to full path disclosure in all versions...
Moderate
Unreviewed
CVE-2024-6544
was published
Sep 13, 2024
An issue in Texas Instruments Fusion Digital Power Designer v.7.10.1 allows a local attacker to...
Moderate
Unreviewed
CVE-2024-41629
was published
Sep 12, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Payara Platform...
Moderate
Unreviewed
CVE-2024-8097
was published
Sep 11, 2024
An exposure of sensitive information to an unauthorized actor in Fortinet FortiSandbox version 4...
Moderate
Unreviewed
CVE-2024-31490
was published
Sep 10, 2024
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All...
Moderate
Unreviewed
CVE-2024-37991
was published
Sep 10, 2024
The Big File Uploads – Increase Maximum File Upload Size plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-8538
was published
Sep 7, 2024
The Remember Me Controls plugin for WordPress is vulnerable to Full Path Disclosure in all...
Moderate
Unreviewed
CVE-2024-7415
was published
Sep 6, 2024
A vulnerability, which was classified as problematic, was found in D-Link DNS-320 2.02b01. This...
Moderate
Unreviewed
CVE-2024-8461
was published
Sep 5, 2024
A vulnerability, which was classified as problematic, has been found in D-Link DNS-320 2.02b01....
Moderate
Unreviewed
CVE-2024-8460
was published
Sep 5, 2024
The Ivory Search – WordPress Search Plugin plugin for WordPress is vulnerable to Information...
Moderate
Unreviewed
CVE-2024-6835
was published
Sep 5, 2024
A vulnerability in Cisco Duo Epic for Hyperdrive could allow an authenticated, local attacker to...
Moderate
Unreviewed
CVE-2024-20503
was published
Sep 4, 2024
A sensitive information disclosure vulnerability exists in ZZCMS v.2023 and before within the...
Moderate
Unreviewed
CVE-2024-44820
was published
Sep 4, 2024
The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to Sensitive...
Moderate
Unreviewed
CVE-2024-8106
was published
Sep 4, 2024
Access control vulnerability in the camera framework module
Impact: Successful exploitation of...
Moderate
Unreviewed
CVE-2024-45447
was published
Sep 4, 2024
Permission control vulnerability in the software update module.
Impact: Successful exploitation...
Moderate
Unreviewed
CVE-2024-45450
was published
Sep 4, 2024
The Premium SEO Pack – WP SEO Plugin plugin for WordPress is vulnerable to Sensitive Information...
Moderate
Unreviewed
CVE-2024-3679
was published
Aug 29, 2024
The Popup Builder plugin for WordPress is vulnerable to Sensitive Information Exposure in all...
Moderate
Unreviewed
CVE-2024-2541
was published
Aug 29, 2024
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Full...
Moderate
Unreviewed
CVE-2024-6551
was published
Aug 29, 2024
The The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid plugin for...
Moderate
Unreviewed
CVE-2024-7418
was published
Aug 29, 2024
A vulnerability identified in NetIQ Advance Authentication that leaks sensitive server...
Moderate
Unreviewed
CVE-2021-22529
was published
Aug 28, 2024
The Mollie Payments for WooCommerce plugin for WordPress is vulnerable to information exposure in...
Moderate
Unreviewed
CVE-2024-6448
was published
Aug 28, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mediavine Create by...
Moderate
Unreviewed
CVE-2024-43264
was published
Aug 26, 2024
ProTip!
Advisories are also available from the
GraphQL API