Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

14 advisories

Loading
there is a possible arbitrary read due to an insecure default value. This could lead to local... Moderate Unreviewed
CVE-2024-44096 was published Sep 13, 2024
In onForegroundServiceButtonClicked of FooterActionsViewModel.kt, there is a possible way to... High Unreviewed
CVE-2024-34734 was published Aug 16, 2024
Filestash configured to skip TLS certificate verification when using the FTPS protocol High
CVE-2024-41255 was published for github.com/mickael-kerjean/filestash (Go) Jul 31, 2024
fgr Vulnerable to Insecure Default Variable Initialization Low
GHSA-879p-8gw4-mcpw was published for fgr (pip) Mar 15, 2024
dan1hc
Skype for Consumer Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21411 was published Mar 12, 2024
An authentication bypass vulnerability exists in the CiRpcAccepted() functionality of SoftEther... High Unreviewed
CVE-2023-27516 was published Oct 12, 2023
An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation... Moderate Unreviewed
CVE-2022-47195 was published Jan 19, 2023
An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation... Moderate Unreviewed
CVE-2022-47194 was published Jan 19, 2023
An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation... Moderate Unreviewed
CVE-2022-47196 was published Jan 19, 2023
An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation... Moderate Unreviewed
CVE-2022-47197 was published Jan 19, 2023
A flaw was found in Openshift. A pod with a DNSPolicy of "ClusterFirst" may incorrectly resolve... High Unreviewed
CVE-2022-3262 was published Dec 8, 2022
A vulnerability classified as problematic has been found in Linux Kernel. This affects the... Moderate Unreviewed
CVE-2022-3642 was published Oct 21, 2022
DotNetNuke Default Machine Key Exposure Moderate
CVE-2008-6540 was published for DotNetNuke.Core (NuGet) May 14, 2022
CORS misconfiguration in socket.io Moderate
CVE-2020-28481 was published for socket.io (npm) Jan 20, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database