Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

113,779 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-32721 was published Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-32711 was published Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-32707 was published Apr 24, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2022-45852 was published Apr 24, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This... Moderate Unreviewed
CVE-2024-32772 was published Apr 24, 2024
Missing Authorization vulnerability in BloomPixel Max Addons Pro for Bricks.This issue affects... Moderate Unreviewed
CVE-2024-32951 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Pavex Embed Google Photos album.This issue... Moderate Unreviewed
CVE-2024-32775 was published Apr 24, 2024
Insertion of Sensitive Information into Log File vulnerability in Very Good Plugins WP Fusion... Moderate Unreviewed
CVE-2024-32796 was published Apr 24, 2024
Telemetry Dashboard v1.0.0.7 for Dell ThinOS 2402 contains a sensitive information disclosure... Moderate Unreviewed
CVE-2024-28963 was published Apr 24, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StreamWeasels... Moderate Unreviewed
CVE-2024-32716 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Webangon The Pack Elementor.This issue... Moderate Unreviewed
CVE-2024-32718 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Foliovision FV Flowplayer Video Player.This... Moderate Unreviewed
CVE-2024-32955 was published Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-32956 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Podlove Podlove Podcast Publisher.This issue... Moderate Unreviewed
CVE-2024-32812 was published Apr 24, 2024
Deserialization of Untrusted Data vulnerability in Import and export users and customers.This... Moderate Unreviewed
CVE-2024-32817 was published Apr 24, 2024
Deserialization of Untrusted Data vulnerability in WebToffee Import Export WordPress Users.This... Moderate Unreviewed
CVE-2024-32835 was published Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-32834 was published Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-32801 was published Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-32791 was published Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-32815 was published Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-32833 was published Apr 24, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in HasThemes HT Mega... Moderate Unreviewed
CVE-2024-32782 was published Apr 24, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in E4J s.R.L. VikRentCar... Moderate Unreviewed
CVE-2024-32780 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in 2day.Sk, Webikon SuperFaktura WooCommerce... Moderate Unreviewed
CVE-2024-32803 was published Apr 24, 2024
Insertion of Sensitive Information into Log File vulnerability in Frédéric GILLES FG Joomla to... Moderate Unreviewed
CVE-2024-32788 was published Apr 24, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database