GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
113,779 advisories
Filter by severity
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-32721
was published
Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-32711
was published
Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-32707
was published
Apr 24, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2022-45852
was published
Apr 24, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This...
Moderate
Unreviewed
CVE-2024-32772
was published
Apr 24, 2024
Missing Authorization vulnerability in BloomPixel Max Addons Pro for Bricks.This issue affects...
Moderate
Unreviewed
CVE-2024-32951
was published
Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Pavex Embed Google Photos album.This issue...
Moderate
Unreviewed
CVE-2024-32775
was published
Apr 24, 2024
Insertion of Sensitive Information into Log File vulnerability in Very Good Plugins WP Fusion...
Moderate
Unreviewed
CVE-2024-32796
was published
Apr 24, 2024
Telemetry Dashboard v1.0.0.7 for Dell ThinOS 2402 contains a sensitive information disclosure...
Moderate
Unreviewed
CVE-2024-28963
was published
Apr 24, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StreamWeasels...
Moderate
Unreviewed
CVE-2024-32716
was published
Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Webangon The Pack Elementor.This issue...
Moderate
Unreviewed
CVE-2024-32718
was published
Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Foliovision FV Flowplayer Video Player.This...
Moderate
Unreviewed
CVE-2024-32955
was published
Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-32956
was published
Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Podlove Podlove Podcast Publisher.This issue...
Moderate
Unreviewed
CVE-2024-32812
was published
Apr 24, 2024
Deserialization of Untrusted Data vulnerability in Import and export users and customers.This...
Moderate
Unreviewed
CVE-2024-32817
was published
Apr 24, 2024
Deserialization of Untrusted Data vulnerability in WebToffee Import Export WordPress Users.This...
Moderate
Unreviewed
CVE-2024-32835
was published
Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-32834
was published
Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-32801
was published
Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-32791
was published
Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-32815
was published
Apr 24, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-32833
was published
Apr 24, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in HasThemes HT Mega...
Moderate
Unreviewed
CVE-2024-32782
was published
Apr 24, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in E4J s.R.L. VikRentCar...
Moderate
Unreviewed
CVE-2024-32780
was published
Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in 2day.Sk, Webikon SuperFaktura WooCommerce...
Moderate
Unreviewed
CVE-2024-32803
was published
Apr 24, 2024
Insertion of Sensitive Information into Log File vulnerability in Frédéric GILLES FG Joomla to...
Moderate
Unreviewed
CVE-2024-32788
was published
Apr 24, 2024
ProTip!
Advisories are also available from the
GraphQL API