Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

244 advisories

Loading
Insertion of sensitive information into sent data issue exists in Cybozu Garoon 5.5.0 to 6.0.0,... Moderate Unreviewed
CVE-2024-31404 was published Jun 11, 2024
Keycloak exposes sensitive information in Pushed Authorization Requests (PAR) High
CVE-2024-4540 was published for org.keycloak:keycloak-services (Maven) Jun 10, 2024
mschallar
Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 does not properly set the HTTPOnly flag for cookies... Moderate Unreviewed
CVE-2024-36788 was published Jun 7, 2024
scikit-learn sensitive data leakage vulnerability Moderate
CVE-2024-5206 was published for scikit-learn (pip) Jun 6, 2024
Insecure Storage of Sensitive Information vulnerability in WPMU DEV Defender Security allows :... Moderate Unreviewed
CVE-2022-44581 was published May 17, 2024
SAP Business Objects Business Intelligence Platform is vulnerable to Insecure Storage as dynamic... Moderate Unreviewed
CVE-2024-33004 was published May 14, 2024
A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16... Moderate Unreviewed
CVE-2024-27789 was published May 14, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2024-23229 was published May 14, 2024
Exposure of Sensitive Information vulnerability exists in the GSLB container, which may allow an... Moderate Unreviewed
CVE-2024-28132 was published May 8, 2024
An issue in LOGINT LoMag Inventory Management v1.0.20.120 and before allows a local attacker to... Moderate Unreviewed
CVE-2024-32211 was published May 1, 2024
An issue in CmsEasy v.7.7 and before allows a remote attacker to obtain sensitive information via... Low Unreviewed
CVE-2024-32236 was published Apr 25, 2024
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce... Moderate Unreviewed
CVE-2024-3733 was published Apr 25, 2024
An issue in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to cause a... High Unreviewed
CVE-2024-22808 was published Apr 22, 2024
An information disclosure vulnerability exists in Brocade SANnav before v2.3.1 and v2.3.0a when... High Unreviewed
CVE-2024-29968 was published Apr 19, 2024
In Brocade SANnav before v2.3.1, and v2.3.0a, it is possible to back up the appliance from the... Moderate Unreviewed
CVE-2024-29965 was published Apr 19, 2024
HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability... Moderate Unreviewed
CVE-2024-23561 was published Apr 15, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Leap13 Premium Addons... Moderate Unreviewed
CVE-2024-31278 was published Apr 10, 2024
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce... Moderate Unreviewed
CVE-2024-2974 was published Apr 9, 2024
In modem driver, there is a possible system crash due to improper input validation. This could... Moderate Unreviewed
CVE-2023-52345 was published Apr 8, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could... Moderate Unreviewed
CVE-2024-20050 was published Apr 1, 2024
This issue was addressed through improved state management. This issue is fixed in macOS Sonoma... High Unreviewed
CVE-2023-42913 was published Mar 28, 2024
Insecure storage of LDAP passwords in the authentication functionality of AVSystem Unified... Moderate Unreviewed
CVE-2024-25655 was published Mar 18, 2024
A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4... Unknown Unreviewed
CVE-2024-28069 was published Mar 16, 2024
A logic issue was addressed with improved restrictions. This issue is fixed in tvOS 17.4, iOS 17... Moderate Unreviewed
CVE-2024-23290 was published Mar 8, 2024
This issue was addressed through improved state management. This issue is fixed in tvOS 17.4, iOS... Moderate Unreviewed
CVE-2024-23241 was published Mar 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database