GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,403

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

7,935 advisories

Filter by severity

Sort by

Least recently updated

Mattermost versions 10.0.x <= 10.0.0 and 9.11.x <= 9.11.2 fail to properly query ElasticSearch... Moderate Unreviewed

CVE-2024-52032 was published Nov 9, 2024

The Magical Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-10352 was published Nov 9, 2024

The Quform - WordPress Form Builder plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-8756 was published Nov 9, 2024

The CE21 Suite plugin for WordPress is vulnerable to sensitive information disclosure via the... Critical Unreviewed

CVE-2024-10285 was published Nov 9, 2024

Dell PowerProtect DD, versions prior to 7.7.5.50, contains an Exposure of Sensitive Information... Low Unreviewed

CVE-2024-48011 was published Nov 8, 2024

A vulnerability classified as problematic was found in emqx neuron up to 2.10.0. Affected by this... Moderate Unreviewed

CVE-2024-10965 was published Nov 7, 2024

A vulnerability in the logging component of Cisco Unified Communications Manager IM &... Moderate Unreviewed

CVE-2024-20457 was published Nov 6, 2024

A vulnerability in the logging subsystem of Cisco Meeting Management could allow an authenticated... Moderate Unreviewed

CVE-2024-20507 was published Nov 6, 2024

A vulnerability in the web UI of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800... Moderate Unreviewed

CVE-2024-20445 was published Nov 6, 2024

A disclosure of sensitive information flaw was found in foreman via the GraphQL API. If the... High Unreviewed

CVE-2024-6861 was published Nov 6, 2024

A vulnerability classified as problematic has been found in D-Link DNS-320, DNS-320LW, DNS-325... Moderate Unreviewed

CVE-2024-10916 was published Nov 6, 2024

The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Basic... Moderate Unreviewed

CVE-2024-10084 was published Nov 6, 2024

Under certain conditions, through a request directed to the Waybox Enel X web management... Moderate Unreviewed

CVE-2023-29116 was published Nov 5, 2024

System logs could be accessed through web management application due to a lack of access control.... Moderate Unreviewed

CVE-2023-29114 was published Nov 5, 2024

The Ultimate Bootstrap Elements for Elementor plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2024-10329 was published Nov 5, 2024

The 140+ Widgets | Xpro Addons For Elementor – FREE plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-10319 was published Nov 5, 2024

A vulnerability was found in Foreman's loader macros introduced with report templates. These... Moderate Unreviewed

CVE-2024-8553 was published Oct 31, 2024

The LevelOne WBR-6012 router has an information disclosure vulnerability in its web application,... Moderate Unreviewed

CVE-2024-33603 was published Oct 30, 2024

The LevelOne WBR-6012 router contains a vulnerability within its web application that allows... Moderate Unreviewed

CVE-2024-33626 was published Oct 30, 2024

mudler/localai version 2.17.1 is vulnerable to a Timing Attack. This type of side-channel attack... High Unreviewed

CVE-2024-7010 was published Oct 29, 2024

The Move Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-10360 was published Oct 29, 2024

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-10312 was published Oct 29, 2024

HCL Connections is vulnerable to an information disclosure vulnerability, due to an IBM WebSphere... Low Unreviewed

CVE-2024-30106 was published Oct 29, 2024

The Clever Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-10357 was published Oct 26, 2024

The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Information... Moderate Unreviewed

CVE-2024-10050 was published Oct 24, 2024

Previous 1 2 3 4 5 … 317 318 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,935 advisories