GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,502

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

302 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability in Cisco Integrated Management Controller could allow an unauthenticated,... Moderate Unreviewed

CVE-2020-26062 was published Nov 18, 2024

A vulnerability, which was classified as problematic, was found in spa-cartcms 1.9.0.6. Affected... Moderate Unreviewed

CVE-2024-6129 was published Jun 18, 2024

A vulnerability was found in nasirkhan Laravel Starter up to 11.8.0. It has been rated as... Moderate Unreviewed

CVE-2024-6056 was published Jun 17, 2024

IBM TXSeries for Multiplatforms 10.1 could allow an attacker to determine valid usernames due to... Moderate Unreviewed

CVE-2024-41741 was published Nov 1, 2024

In the Linux kernel, the following vulnerability has been resolved: x86: fix user address... Moderate Unreviewed

CVE-2024-50102 was published Nov 5, 2024

wolfSSL SP Math All RSA implementation is vulnerable to the Marvin Attack, new variation of a... Moderate Unreviewed

CVE-2023-6935 was published Feb 10, 2024

Vulnerability in the Oracle Database Core component of Oracle Database Server. Supported... Moderate Unreviewed

CVE-2024-21233 was published Oct 15, 2024

Vulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business... Moderate Unreviewed

CVE-2024-21206 was published Oct 15, 2024

By checking the result of calls to `window.open` with specifically set protocol handlers, an... Moderate Unreviewed

CVE-2024-9398 was published Oct 1, 2024

This issue occurs during password recovery, where a difference in messages could allow an... Moderate Unreviewed

CVE-2024-2464 was published Mar 21, 2024

In Logpoint before 7.4.0, an attacker can enumerate a valid list of usernames by using publicly... Moderate Unreviewed

CVE-2024-30176 was published May 1, 2024

Inappropriate implementation in Paint in Google Chrome prior to 98.0.4758.80 allowed a remote... Moderate Unreviewed

CVE-2022-4025 was published Jan 3, 2023

A privacy issue was addressed by moving sensitive data to a more secure location. This issue is... Moderate Unreviewed

CVE-2024-27839 was published May 14, 2024

Botan before 3.6.0, when certain LLVM versions are used, has compiler-induced secret-dependent... Moderate Unreviewed

CVE-2024-50382 was published Oct 23, 2024

Botan before 3.6.0, when certain GCC versions are used, has a compiler-induced secret-dependent... Moderate Unreviewed

CVE-2024-50383 was published Oct 23, 2024

Accounts enumeration vulnerability in the Login Component of Reolink Duo 2 WiFi Camera (Firmware... Moderate Unreviewed

CVE-2024-48644 was published Oct 23, 2024

In the Linux kernel, the following vulnerability has been resolved: icmp: change the order of... Moderate Unreviewed

CVE-2024-47678 was published Oct 21, 2024

A flaw was found in the Linux kernel's memory deduplication mechanism. The max page sharing of... Moderate Unreviewed

CVE-2024-0564 was published Jan 30, 2024

Windows Cryptographic Information Disclosure Vulnerability Moderate Unreviewed

CVE-2024-43546 was published Oct 8, 2024

The goTenna Pro ATAK Plugin has a payload length vulnerability that makes it possible to tell... Moderate Unreviewed

CVE-2024-41715 was published Sep 26, 2024

The goTenna Pro has a payload length vulnerability that makes it possible to tell the length of... Moderate Unreviewed

CVE-2024-47129 was published Sep 26, 2024

A vulnerability was found in Netadmin Software NetAdmin IAM up to 3.5 and classified as... Moderate Unreviewed

CVE-2024-9513 was published Oct 4, 2024

A vulnerability in NetCat CMS allows an attacker to send a specially crafted http request that... Moderate Unreviewed

CVE-2024-8651 was published Sep 19, 2024

User enumeration vulnerability in ORDAT FOSS-Online before v2.24.01 allows attackers to determine... Moderate Unreviewed

CVE-2024-34336 was published Sep 12, 2024

Observable discrepancy in RAPL interface for some Intel(R) Processors may allow a privileged user... Moderate Unreviewed

CVE-2024-23984 was published Sep 16, 2024

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

302 advisories