Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

8,989 advisories

Loading
A vulnerability was found in Tsinghua Unigroup Electronic Archives Management System 3.2.210802... Moderate Unreviewed
CVE-2024-13042 was published Dec 30, 2024
Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor High Unreviewed
CVE-2024-47922 was published Dec 30, 2024
Mashov – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2024-47923 was published Dec 30, 2024
TunnelVision - decloaking VPNs using DHCP Moderate
GHSA-hqmp-g7ph-x543 was published for quincy (Rust) Dec 27, 2024
changedetection.io Vulnerable to Improper Input Validation Leading to LFR/Path Traversal High
CVE-2024-56509 was published for changedetection.io (pip) Dec 27, 2024
vicevirus
A vulnerability classified as problematic has been found in Amcrest IP2M-841B, IP2M-841W, IPC... Moderate Unreviewed
CVE-2024-12984 was published Dec 27, 2024
There is an information vulnerability in Huawei smartphones. A function in a module can be called... Low Unreviewed
CVE-2020-9089 was published Dec 27, 2024
There is an information disclosure vulnerability in several smartphones. The system has a logic... Low Unreviewed
CVE-2020-9082 was published Dec 27, 2024
A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2... Moderate Unreviewed
CVE-2024-12896 was published Dec 23, 2024
An AirVantage online Warranty Checker tool vulnerability could allow an attacker to perform bulk... Moderate Unreviewed
CVE-2023-31280 was published Dec 21, 2024
The Page Restriction WordPress (WP) – Protect WP Pages/Post plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-11297 was published Dec 20, 2024
Browsershot Improper Input Validation vulnerability High
CVE-2024-21549 was published for spatie/browsershot (Composer) Dec 20, 2024
Remote authentication bypass vulnerability in HPE Alletra Storage MP B10000 in versions prior to... Moderate Unreviewed
CVE-2024-54009 was published Dec 20, 2024
The Button Block – Get fully customizable & multi-functional buttons plugin for WordPress is... Moderate Unreviewed
CVE-2024-12560 was published Dec 19, 2024
The WP Project Manager plugin for WordPress is vulnerable to Sensitive Information Exposure in... Moderate Unreviewed
CVE-2024-10548 was published Dec 19, 2024
The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content... Moderate Unreviewed
CVE-2024-11291 was published Dec 18, 2024
The Animation Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2024-12340 was published Dec 18, 2024
The Simple Page Access Restriction plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2024-11295 was published Dec 18, 2024
The Accept Authorize.NET Payments Using Contact Form 7 plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-12250 was published Dec 18, 2024
The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed
CVE-2024-10356 was published Dec 17, 2024
The PPWP – Password Protect Pages plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2024-11280 was published Dec 17, 2024
The s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member... High Unreviewed
CVE-2024-8326 was published Dec 17, 2024
The Memberful plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-11294 was published Dec 17, 2024
Some parameters of the alarm clock module are improperly stored, leaking some sensitive information. Moderate Unreviewed
CVE-2021-26281 was published Dec 17, 2024
Some parameters of the weather module are improperly stored, leaking some sensitive information. Moderate Unreviewed
CVE-2021-26279 was published Dec 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database