GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
8,808 advisories
Filter by severity
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mediavine Create by...
Moderate
Unreviewed
CVE-2024-43264
was published
Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in JEM Plugins Order...
Moderate
Unreviewed
CVE-2024-43259
was published
Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Store Locator Plus...
Moderate
Unreviewed
CVE-2024-43258
was published
Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Bit Apps Bit Form Pro...
Moderate
Unreviewed
CVE-2024-43251
was published
Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Nouthemes Leopard -...
Moderate
Unreviewed
CVE-2024-43257
was published
Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Shared Files – File...
Moderate
Unreviewed
CVE-2024-43230
was published
Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in bPlugins LLC Flash &...
Moderate
Unreviewed
CVE-2024-43319
was published
Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in gVectors Team wpForo...
High
Unreviewed
CVE-2024-43289
was published
Aug 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Contest Gallery.This...
Moderate
Unreviewed
CVE-2024-43283
was published
Aug 26, 2024
CyberArk - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
Moderate
Unreviewed
CVE-2024-42337
was published
Aug 25, 2024
CyberArk - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
Moderate
Unreviewed
CVE-2024-42339
was published
Aug 25, 2024
CyberArk - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
Moderate
Unreviewed
CVE-2024-42338
was published
Aug 25, 2024
The WordPress Button Plugin MaxButtons plugin for WordPress is vulnerable to information exposure...
Moderate
Unreviewed
CVE-2024-6499
was published
Aug 24, 2024
Mage AI allows remote unauthenticated attackers to leak the terminal server command history of arbitrary users
Moderate
CVE-2024-8072
was published
for
mage-ai
(pip)
Aug 22, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in OpenText Performance...
Moderate
Unreviewed
CVE-2022-26327
was published
Aug 21, 2024
An issue was discovered in the Docusign API package 8.142.14 for Salesforce. The...
High
Unreviewed
CVE-2024-39344
was published
Aug 21, 2024
The Flamix: Bitrix24 and Contact Form 7 integrations plugin for WordPress is vulnerable to Full...
Moderate
Unreviewed
CVE-2024-6568
was published
Aug 21, 2024
The Hide My Site plugin for WordPress is vulnerable to Sensitive Information Exposure in all...
Moderate
Unreviewed
CVE-2024-5880
was published
Aug 21, 2024
Barix – CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
High
Unreviewed
CVE-2024-41700
was published
Aug 20, 2024
Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
Moderate
Unreviewed
CVE-2024-41698
was published
Aug 20, 2024
A vulnerability was found in ZZCMS 2023. It has been rated as problematic. This issue affects...
Moderate
Unreviewed
CVE-2024-7925
was published
Aug 19, 2024
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain...
High
Unreviewed
CVE-2024-42658
was published
Aug 19, 2024
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain...
High
Unreviewed
CVE-2024-42657
was published
Aug 19, 2024
Cilium leaks information via incorrect ReferenceGrant update logic in Gateway API
Moderate
CVE-2024-42486
was published
for
github.com/cilium/cilium
(Go)
Aug 16, 2024
The Relevanssi – A Better Search plugin for WordPress is vulnerable to Information Exposure in...
Moderate
Unreviewed
CVE-2024-7630
was published
Aug 16, 2024
ProTip!
Advisories are also available from the
GraphQL API