Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

8,808 advisories

Loading
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mediavine Create by... Moderate Unreviewed
CVE-2024-43264 was published Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in JEM Plugins Order... Moderate Unreviewed
CVE-2024-43259 was published Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Store Locator Plus... Moderate Unreviewed
CVE-2024-43258 was published Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Bit Apps Bit Form Pro... Moderate Unreviewed
CVE-2024-43251 was published Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Nouthemes Leopard -... Moderate Unreviewed
CVE-2024-43257 was published Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Shared Files – File... Moderate Unreviewed
CVE-2024-43230 was published Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in bPlugins LLC Flash &... Moderate Unreviewed
CVE-2024-43319 was published Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in gVectors Team wpForo... High Unreviewed
CVE-2024-43289 was published Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Contest Gallery.This... Moderate Unreviewed
CVE-2024-43283 was published Aug 26, 2024
CyberArk - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2024-42337 was published Aug 25, 2024
CyberArk - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2024-42339 was published Aug 25, 2024
CyberArk - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2024-42338 was published Aug 25, 2024
The WordPress Button Plugin MaxButtons plugin for WordPress is vulnerable to information exposure... Moderate Unreviewed
CVE-2024-6499 was published Aug 24, 2024
Mage AI allows remote unauthenticated attackers to leak the terminal server command history of arbitrary users Moderate
CVE-2024-8072 was published for mage-ai (pip) Aug 22, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in OpenText Performance... Moderate Unreviewed
CVE-2022-26327 was published Aug 21, 2024
An issue was discovered in the Docusign API package 8.142.14 for Salesforce. The... High Unreviewed
CVE-2024-39344 was published Aug 21, 2024
The Flamix: Bitrix24 and Contact Form 7 integrations plugin for WordPress is vulnerable to Full... Moderate Unreviewed
CVE-2024-6568 was published Aug 21, 2024
The Hide My Site plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-5880 was published Aug 21, 2024
Barix – CWE-200 Exposure of Sensitive Information to an Unauthorized Actor High Unreviewed
CVE-2024-41700 was published Aug 20, 2024
Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2024-41698 was published Aug 20, 2024
A vulnerability was found in ZZCMS 2023. It has been rated as problematic. This issue affects... Moderate Unreviewed
CVE-2024-7925 was published Aug 19, 2024
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain... High Unreviewed
CVE-2024-42658 was published Aug 19, 2024
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain... High Unreviewed
CVE-2024-42657 was published Aug 19, 2024
Cilium leaks information via incorrect ReferenceGrant update logic in Gateway API Moderate
CVE-2024-42486 was published for github.com/cilium/cilium (Go) Aug 16, 2024
sayboras
The Relevanssi – A Better Search plugin for WordPress is vulnerable to Information Exposure in... Moderate Unreviewed
CVE-2024-7630 was published Aug 16, 2024
ProTip! Advisories are also available from the GraphQL API