Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,111
Maven
5,000+
npm
3,767
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
888
Swift
37
Unreviewed advisories
All unreviewed
5,000+

9,045 advisories

Loading
The Passster – Password Protect Pages and Content plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed
CVE-2024-11282 was published Jan 7, 2025
The Elementor Addons AI Addons – 70 Widgets, Premium Templates, Ultimate Elements plugin for... Moderate Unreviewed
CVE-2024-12140 was published Jan 7, 2025
The Optimize Your Campaigns – Google Shopping – Google Ads – Google Adwords plugin for WordPress... Moderate Unreviewed
CVE-2024-12159 was published Jan 7, 2025
The Member Access plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-11290 was published Jan 7, 2025
The Duplicate Post, Page and Any Custom Post plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed
CVE-2024-12538 was published Jan 7, 2025
fetch: Authorization headers not dropped when redirecting cross-origin High
CVE-2025-21620 was published for deno (Rust) Jan 6, 2025
rexxars
A vulnerability, which was classified as problematic, has been found in Tsinghua Unigroup... Moderate Unreviewed
CVE-2025-0226 was published Jan 5, 2025
A vulnerability was found in Provision-ISR SH-4050A-2, SH-4100A-2L(MM), SH-8100A-2L(MM), SH... Moderate Unreviewed
CVE-2025-0224 was published Jan 5, 2025
A vulnerability, which was classified as problematic, was found in Tsinghua Unigroup Electronic... Moderate Unreviewed
CVE-2025-0227 was published Jan 5, 2025
A vulnerability classified as problematic has been found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z,... Moderate Unreviewed
CVE-2024-13131 was published Jan 5, 2025
A vulnerability classified as problematic has been found in Beijing Yunfan Internet Technology... Moderate Unreviewed
CVE-2024-13110 was published Jan 2, 2025
A vulnerability was found in Tsinghua Unigroup Electronic Archives Management System 3.2.210802... Moderate Unreviewed
CVE-2024-13042 was published Dec 30, 2024
Mashov – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor Moderate Unreviewed
CVE-2024-47923 was published Dec 30, 2024
Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor High Unreviewed
CVE-2024-47922 was published Dec 30, 2024
A Password in Configuration File issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0... High Unreviewed
CVE-2017-7923 was published May 17, 2022
changedetection.io Vulnerable to Improper Input Validation Leading to LFR/Path Traversal High
CVE-2024-56509 was published for changedetection.io (pip) Dec 27, 2024
vicevirus
Exposure of Sensitive Information to an Unauthorized Actor in urllib3 Critical
CVE-2018-20060 was published for urllib3 (pip) Dec 12, 2018
TunnelVision - decloaking VPNs using DHCP Moderate
GHSA-hqmp-g7ph-x543 was published for quincy (Rust) Dec 27, 2024
A vulnerability classified as problematic has been found in Amcrest IP2M-841B, IP2M-841W, IPC... Moderate Unreviewed
CVE-2024-12984 was published Dec 27, 2024
There is an information vulnerability in Huawei smartphones. A function in a module can be called... Low Unreviewed
CVE-2020-9089 was published Dec 27, 2024
There is an information disclosure vulnerability in several smartphones. The system has a logic... Low Unreviewed
CVE-2020-9082 was published Dec 27, 2024
A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2... Moderate Unreviewed
CVE-2024-12896 was published Dec 23, 2024
Keycloak's admin API allows low privilege users to use administrative functions High
CVE-2024-3656 was published for org.keycloak:keycloak-services (Maven) Jun 11, 2024
An AirVantage online Warranty Checker tool vulnerability could allow an attacker to perform bulk... Moderate Unreviewed
CVE-2023-31280 was published Dec 21, 2024
The Page Restriction WordPress (WP) – Protect WP Pages/Post plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-11297 was published Dec 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database