Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

157 advisories

Loading
The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-3678 was published Apr 26, 2024
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce... Moderate Unreviewed
CVE-2024-3733 was published Apr 25, 2024
In Brocade SANnav before v2.3.1, and v2.3.0a, it is possible to back up the appliance from the... Moderate Unreviewed
CVE-2024-29965 was published Apr 19, 2024
HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability... Moderate Unreviewed
CVE-2024-23561 was published Apr 15, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Leap13 Premium Addons... Moderate Unreviewed
CVE-2024-31278 was published Apr 10, 2024
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce... Moderate Unreviewed
CVE-2024-2974 was published Apr 9, 2024
In modem driver, there is a possible system crash due to improper input validation. This could... Moderate Unreviewed
CVE-2023-52345 was published Apr 8, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could... Moderate Unreviewed
CVE-2024-20050 was published Apr 1, 2024
Insecure storage of LDAP passwords in the authentication functionality of AVSystem Unified... Moderate Unreviewed
CVE-2024-25655 was published Mar 18, 2024
A logic issue was addressed with improved restrictions. This issue is fixed in tvOS 17.4, iOS 17... Moderate Unreviewed
CVE-2024-23290 was published Mar 8, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2024-23205 was published Mar 8, 2024
This issue was addressed through improved state management. This issue is fixed in tvOS 17.4, iOS... Moderate Unreviewed
CVE-2024-23241 was published Mar 8, 2024
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause sensitive information leak... Moderate Unreviewed
CVE-2024-21826 was published Mar 4, 2024
An issue in uverif v.2.0 allows a remote attacker to obtain sensitive information. Moderate Unreviewed
CVE-2024-26559 was published Feb 29, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2023-42878 was published Feb 21, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.1, macOS... Moderate Unreviewed
CVE-2023-42840 was published Feb 21, 2024
This issue was addressed with improved state management. This issue is fixed in tvOS 17.1,... Moderate Unreviewed
CVE-2023-42839 was published Feb 21, 2024
In multiple files, there is a possible way that trimmed content could be included in PDF output... Moderate Unreviewed
CVE-2023-40093 was published Feb 16, 2024
`bhyveload -h <host-path>` may be used to grant loader access to the <host-path> directory tree... Moderate Unreviewed
CVE-2024-25940 was published Feb 15, 2024
A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the... Moderate Unreviewed
CVE-2024-25360 was published Feb 12, 2024
Insecure Permissiosn vulnerability in TP Link TC70 and C200 WIFI Camera v.3 firmware v.1.3.4 and... Moderate Unreviewed
CVE-2023-49515 was published Jan 17, 2024
Users’ product account authentication data was stored in clear text in The Genie Company Aladdin... Moderate Unreviewed
CVE-2023-5879 was published Jan 3, 2024
IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an... Moderate Unreviewed
CVE-2023-45184 was published Dec 14, 2023
A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows... Moderate Unreviewed
CVE-2023-6253 was published Nov 22, 2023
A vulnerability in Veeam ONE allows a user with the Veeam ONE Read-Only User role to view the... Moderate Unreviewed
CVE-2023-41723 was published Nov 14, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database