GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,562
Composer 4,198
Erlang 31
GitHub Actions 19
Go 1,986
Maven 5,163
npm 3,702
NuGet 660
pip 3,328
Pub 11
RubyGems 883
Rust 843
Swift 36

Unreviewed advisories

All unreviewed 233,914

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

194 advisories

Filter by severity

Sort by

Least recently updated

An authentication bypass vulnerability exists in the affected product. The vulnerability exists... Critical Unreviewed

CVE-2024-10943 was published Nov 12, 2024

Moodle admin presets export tool includes some secrets that should not be exported Low

CVE-2024-43427 was published for moodle/moodle (Composer) Nov 11, 2024

An issue was discovered on One2Track 2019-12-08 devices. Confidential information is needlessly... Moderate Unreviewed

CVE-2019-20469 was published Nov 7, 2024

Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local... Moderate Unreviewed

CVE-2024-34677 was published Nov 6, 2024

The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for... High Unreviewed

CVE-2024-10028 was published Nov 6, 2024

Altai Technologies Ltd Altai IX500 Indoor 22 802.11ac Wave 2 AP After login, there are file reads... Moderate Unreviewed

CVE-2024-51399 was published Nov 1, 2024

Yealink Meeting Server before V26.0.0.67 is vulnerable to sensitive data exposure in the server... High Unreviewed

CVE-2024-48352 was published Nov 1, 2024

Yealink Meeting Server before V26.0.0.67 allows attackers to obtain static key information from a... High Unreviewed

CVE-2024-48353 was published Nov 1, 2024

This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed

CVE-2024-44257 was published Oct 29, 2024

An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2024-44216 was published Oct 29, 2024

An issue existed in the parsing of URLs. This issue was addressed with improved input validation.... Moderate Unreviewed

CVE-2024-44213 was published Oct 28, 2024

This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed

CVE-2024-44222 was published Oct 28, 2024

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An... Moderate Unreviewed

CVE-2024-44174 was published Oct 28, 2024

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed

CVE-2024-44175 was published Oct 28, 2024

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Low Unreviewed

CVE-2024-44275 was published Oct 28, 2024

A logic issue was addressed with improved state management. This issue is fixed in iOS 18.1 and... Moderate Unreviewed

CVE-2024-44263 was published Oct 28, 2024

OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed

CVE-2022-30359 was published Oct 25, 2024

OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed

CVE-2022-30361 was published Oct 25, 2024

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker... Moderate Unreviewed

CVE-2024-10041 was published Oct 23, 2024

A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform... Moderate Unreviewed

CVE-2024-20462 was published Oct 16, 2024

Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite (component: User... Moderate Unreviewed

CVE-2024-21258 was published Oct 15, 2024

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Low Unreviewed

CVE-2024-21211 was published Oct 15, 2024

An issue in Plug n Play Camera com.wisdomcity.zwave 1.1.0 allows a remote attacker to obtain... High Unreviewed

CVE-2024-48770 was published Oct 11, 2024

An issue was discovered in Atos Eviden SMC xScale before 1.6.6. During initialization of nodes,... High Unreviewed

CVE-2024-42018 was published Oct 11, 2024

HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could... Low Unreviewed

CVE-2024-30132 was published Oct 1, 2024

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

194 advisories