Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,800
Erlang
36
GitHub Actions
29
Go
2,380
Maven
5,000+
npm
4,005
NuGet
720
pip
3,805
Pub
12
RubyGems
927
Rust
986
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

22 advisories

Loading
Insertion of sensitive information into sent data vulnerability in synorelayd in Synology... High Unreviewed
CVE-2021-26566 was published May 24, 2022
An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.8,... High Unreviewed
CVE-2023-3413 was published Sep 29, 2023
The "tokenKey" value used in user authorization is visible in the HTML source of the login page. High Unreviewed
CVE-2023-49261 was published Jan 12, 2024
Audit records for OpenAPI requests may include sensitive information. This could lead to... High Unreviewed
CVE-2023-6916 was published Apr 10, 2024
An attacker with access to the network where the CIRCUTOR Q-SMT is located in its firmware... High Unreviewed
CVE-2024-8890 was published Sep 18, 2024
Insertion of Sensitive Information Into Sent Data vulnerability in VideoWhisper.Com Contact Forms... High Unreviewed
CVE-2024-49235 was published Oct 17, 2024
Insertion of Sensitive Information Into Sent Data vulnerability in brandtoss WP Mailster allows... High Unreviewed
CVE-2024-53804 was published Dec 6, 2024
Insertion of Sensitive Information Into Sent Data vulnerability in WPSpins Post/Page Copying Tool... High Unreviewed
CVE-2024-56300 was published Jan 7, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in Drupal Image Sizes allows... High Unreviewed
CVE-2024-13259 was published Jan 9, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in Drupal REST Views allows... High Unreviewed
CVE-2024-13254 was published Jan 9, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in Drupal File Entity (fieldable... High Unreviewed
CVE-2024-13276 was published Jan 9, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in NotFound WPDB to Sql allows... High Unreviewed
CVE-2025-23774 was published Jan 22, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in NotFound WM Options Import... High Unreviewed
CVE-2025-23781 was published Jan 22, 2025
Develocity (formerly Gradle Enterprise) before 2024.3.1 allows an attacker who has network access... High Unreviewed
CVE-2025-24858 was published Jan 26, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in ExtremePACS Extreme XDS allows... High Unreviewed
CVE-2024-7872 was published Mar 6, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in WPMinds Simple WP Events... High Unreviewed
CVE-2025-32594 was published Apr 17, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in Hive Support Hive Support... High Unreviewed
CVE-2025-32635 was published Apr 17, 2025
The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Sensitive Information... High Unreviewed
CVE-2025-3529 was published Apr 23, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in WPFunnels Mail Mint allows... High Unreviewed
CVE-2025-47541 was published May 23, 2025
An unauthenticated HTTP GET request to the /client.php endpoint will disclose the default... High Unreviewed
CVE-2025-48045 was published May 29, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in Vanquish WooCommerce Orders &... High Unreviewed
CVE-2025-48331 was published May 30, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in MultiVendorX MultiVendorX... High Unreviewed
CVE-2025-48261 was published Jun 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database