GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,496
Composer 4,170
Erlang 30
GitHub Actions 19
Go 1,981
Maven 5,155
npm 3,700
NuGet 656
pip 3,319
Pub 11
RubyGems 882
Rust 834
Swift 35

Unreviewed advisories

All unreviewed 232,945

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

7,924 advisories

Filter by severity

Sort by

Least recently updated

The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Basic... Moderate Unreviewed

CVE-2024-10084 was published Nov 6, 2024

Under certain conditions, through a request directed to the Waybox Enel X web management... Moderate Unreviewed

CVE-2023-29116 was published Nov 5, 2024

The Ultimate Bootstrap Elements for Elementor plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2024-10329 was published Nov 5, 2024

System logs could be accessed through web management application due to a lack of access control.... Moderate Unreviewed

CVE-2023-29114 was published Nov 5, 2024

The 140+ Widgets | Xpro Addons For Elementor – FREE plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-10319 was published Nov 5, 2024

A timing attack vulnerability exists in the gaizhenbiao/chuanhuchatgpt repository, specifically... High Unreviewed

CVE-2024-5124 was published Jun 6, 2024

A vulnerability was found in Foreman's loader macros introduced with report templates. These... Moderate Unreviewed

CVE-2024-8553 was published Oct 31, 2024

The LevelOne WBR-6012 router has an information disclosure vulnerability in its web application,... Moderate Unreviewed

CVE-2024-33603 was published Oct 30, 2024

The LevelOne WBR-6012 router contains a vulnerability within its web application that allows... Moderate Unreviewed

CVE-2024-33626 was published Oct 30, 2024

This vulnerability could be exploited, leading to unauthorized disclosure of information to... Moderate Unreviewed

CVE-2024-42508 was published Oct 18, 2024

mudler/localai version 2.17.1 is vulnerable to a Timing Attack. This type of side-channel attack... High Unreviewed

CVE-2024-7010 was published Oct 29, 2024

The Move Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-10360 was published Oct 29, 2024

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-10312 was published Oct 29, 2024

HCL Connections is vulnerable to an information disclosure vulnerability, due to an IBM WebSphere... Low Unreviewed

CVE-2024-30106 was published Oct 29, 2024

The Clever Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-10357 was published Oct 26, 2024

Advantech WebAccess version 9.1.3 contains an exposure of sensitive information to an... High Unreviewed

CVE-2023-4215 was published Oct 17, 2023

A vulnerability was found in code-projects Dormitory Management System 1.0. It has been rated as... Low Unreviewed

CVE-2024-0472 was published Jan 13, 2024

The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Information... Moderate Unreviewed

CVE-2024-10050 was published Oct 24, 2024

A security vulnerability in HCL Domino could allow disclosure of sensitive configuration... Moderate Unreviewed

CVE-2024-23562 was published Jul 8, 2024

A Default Configuration vulnerability in FortiOS may allow an unauthenticated attacker on the... Moderate Unreviewed

CVE-2019-5591 was published May 24, 2022

A vulnerability, which was classified as problematic, was found in ZZCMS 2023. This affects an... Moderate Unreviewed

CVE-2024-10290 was published Oct 23, 2024

The Qi Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure... Moderate Unreviewed

CVE-2024-9530 was published Oct 23, 2024

A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection... Moderate Unreviewed

CVE-2024-50312 was published Oct 22, 2024

The TeploBot - Telegram Bot for WP plugin for WordPress is vulnerable to sensitive information... High Unreviewed

CVE-2024-9627 was published Oct 22, 2024

The News Kit Elementor Addons plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-9541 was published Oct 22, 2024

Previous 1 2 3 4 5 … 316 317 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,924 advisories