Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+

8,469 advisories

Vite's `server.fs.deny` did not deny requests for patterns with directories. Moderate
CVE-2024-31207 was published for vite (npm) Apr 3, 2024
jtmcdole
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)10.5, 11.1, and 11.5 is... Moderate Unreviewed
CVE-2023-38729 was published Apr 3, 2024
** DISPUTED ** A vulnerability, which was classified as problematic, was found in Intelbras MHDX... Moderate Unreviewed
CVE-2024-3160 was published Apr 2, 2024
Missing Authorization vulnerability in WPExperts Wholesale For WooCommerce.This issue affects... Moderate Unreviewed
CVE-2024-30469 was published Mar 29, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Booster Booster Elite... Moderate Unreviewed
CVE-2023-52234 was published Mar 28, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Booster Booster Plus... Moderate Unreviewed
CVE-2023-52231 was published Mar 28, 2024
Eclipse Vert.x memory leak Moderate
CVE-2024-1023 was published for io.vertx:vertx-core (Maven) Mar 27, 2024
marcelstoer
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in PeepSo Community by... Moderate Unreviewed
CVE-2023-27630 was published Mar 26, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in mbbhatti Upload... Moderate Unreviewed
CVE-2023-25965 was published Mar 26, 2024
Pimcore Preview Documents are not restricted to logged in users anymore Moderate
CVE-2024-29197 was published for pimcore/pimcore (Composer) Mar 26, 2024
rliebi pryserv
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wholesale Team... Moderate Unreviewed
CVE-2024-30233 was published Mar 26, 2024
Unauthenticated views may expose information to anonymous users Low
CVE-2024-29199 was published for nautobot (pip) Mar 26, 2024
joewesch
Storefront user can access history and most viewed data from matching back-office user with the same ID Moderate
CVE-2023-48296 was published for oro/customer-portal (Composer) Mar 25, 2024
Pinned entity creation form shows wrong data Moderate
CVE-2023-45824 was published for oro/platform (Composer) Mar 25, 2024
IBM Security Verify Directory 10.0.0 could disclose sensitive server information that could be... Moderate Unreviewed
CVE-2022-32751 was published Mar 22, 2024
Information exposure vulnerability in the CIGESv2 system. This vulnerability could allow a local... Moderate Unreviewed
CVE-2024-2728 was published Mar 22, 2024
Information exposure vulnerability in the CIGESv2 system. A remote attacker might be able to... High Unreviewed
CVE-2024-2725 was published Mar 22, 2024
The private key for the IBM Storage Protect Plus Server 10.1.0 through 10.1.16 certificate can be... Moderate Unreviewed
CVE-2024-27277 was published Mar 21, 2024
A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits... Moderate Unreviewed
CVE-2024-28834 was published Mar 21, 2024
A Information Exposure Vulnerability has been found on Meta4 HR. This vulnerability allows an... High Unreviewed
CVE-2024-2632 was published Mar 19, 2024
Adobe Experience Manager versions 6.5.19 and earlier are affected by an Information Exposure... Moderate Unreviewed
CVE-2024-26063 was published Mar 18, 2024
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-200: Exposure of Sensitive... High Unreviewed
CVE-2024-27769 was published Mar 18, 2024
Information leakage in YAQL Moderate
CVE-2024-29156 was published for yaql (pip) Mar 18, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in N-Media Frontend File... Moderate Unreviewed
CVE-2024-25903 was published Mar 17, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Osamaesh WP Visitor... Moderate Unreviewed
CVE-2024-24867 was published Mar 17, 2024
ProTip! Advisories are also available from the GraphQL API