Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,639 advisories

Loading
An SQL injection vulnerability exists in the BIG-IP Next Central Manager API (URI).  Note:... High Unreviewed
CVE-2024-26026 was published May 8, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Scribit GDPR... High Unreviewed
CVE-2024-34388 was published May 6, 2024
Section Camera V2.5.5.3116-S50-SMA-B20160811 and earlier versions allow the accounts and... High Unreviewed
CVE-2024-33753 was published May 6, 2024
LG Simple Editor getServerSetting Authentication Bypass Vulnerability. This vulnerability allows... High Unreviewed
CVE-2023-40510 was published May 3, 2024
LG Simple Editor checkServer Authentication Bypass Vulnerability. This vulnerability allows... High Unreviewed
CVE-2023-40511 was published May 3, 2024
D-Link DAP-2622 DDP Get SSID List WPA PSK Information Disclosure Vulnerability. This... High Unreviewed
CVE-2023-35750 was published May 3, 2024
An issue in CYCZCAM, SHIX ZHAO, SHIXCAM A9 Camera (circuit board identifier A9-48B-V1.0) firmware... High Unreviewed
CVE-2024-25458 was published May 1, 2024
An issue in Vaales Technologies V_QRS v.2024-01-17 allows a remote attacker to obtain sensitive... High Unreviewed
CVE-2024-24313 was published May 1, 2024
An issue in CSS Exfil Protection v.1.1.0 allows a remote attacker to obtain sensitive information... High Unreviewed
CVE-2024-29384 was published Apr 30, 2024
An issue in TVS Motor Company Limited TVS Connet Android v.4.5.1 and iOS v.5.0.0 allows a remote... High Unreviewed
CVE-2024-33309 was published Apr 30, 2024
Cluster Monitoring Operator contains a credentials leak High
CVE-2024-1139 was published for github.com/openshift/cluster-monitoring-operator (Go) Apr 25, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in CodeRevolution WP... High Unreviewed
CVE-2024-25917 was published Apr 25, 2024
Brocade SANnav before Brocade SANnav v2.3.1 lacks protection mechanisms on port 2377/TCP and... High Unreviewed
CVE-2024-4159 was published Apr 25, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ThemeHigh Email... High Unreviewed
CVE-2024-32781 was published Apr 24, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in PickPlugins Post Grid... High Unreviewed
CVE-2024-32816 was published Apr 24, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in vinoth06. Frontend... High Unreviewed
CVE-2024-32726 was published Apr 24, 2024
Various software builds for the following TCL 30Z and TCL A3X devices leak the ICCID to a system... High Unreviewed
CVE-2023-38296 was published Apr 22, 2024
An information disclosure vulnerability exists in Brocade SANnav before v2.3.1 and v2.3.0a when... High Unreviewed
CVE-2024-29968 was published Apr 19, 2024
A vulnerability affects Brocade SANnav before v2.3.1 and v2.3.0a. It allows a Brocade SANnav... High Unreviewed
CVE-2024-29961 was published Apr 19, 2024
Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle... High Unreviewed
CVE-2024-21095 was published Apr 17, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in AitThemes Citadela... High Unreviewed
CVE-2024-32086 was published Apr 16, 2024
The API in Accredible Credential.net December 6th, 2023 allows an Insecure Direct Object... High Unreviewed
CVE-2023-50872 was published Apr 16, 2024
Duplicate Advisory: Scrapy authorization header leakage on cross-domain redirect High
GHSA-4q82-j5c2-g2c5 was published for scrapy (pip) Apr 16, 2024 withdrawn
A vulnerability of Information Exposure has been found on Technicolor CGA2121 affecting the... High Unreviewed
CVE-2024-3780 was published Apr 15, 2024
A potential security vulnerability has been identified in Web ViewPoint Enterprise software.... High Unreviewed
CVE-2024-22435 was published Apr 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database