Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

158 advisories

Loading
Possible External Service Interaction attack in eDirectory has been discovered in OpenText™... High Unreviewed
CVE-2021-38133 was published Sep 12, 2024
A weak password requirement issue was discovered in Teldats Router RS123, RS123w allows a remote... High Unreviewed
CVE-2022-39997 was published Aug 27, 2024
Silverpeas vulnerable to password complexity rule bypass Low
CVE-2024-42850 was published for org.silverpeas.core:silverpeas-core (Maven) Aug 16, 2024
IBM Common Licensing 9.0 does not require that users should have strong passwords by default,... High Unreviewed
CVE-2024-40697 was published Aug 13, 2024
A vulnerability has been identified in Location Intelligence family (All versions < V4.4).... Moderate Unreviewed
CVE-2024-41683 was published Aug 13, 2024
Philips Vue PACS does not require that users have strong passwords, which could make it easier... Moderate Unreviewed
CVE-2023-40539 was published Jul 18, 2024
The user management section of the web application permits the creation of user accounts with... High Unreviewed
CVE-2023-41923 was published Jul 2, 2024
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to possibly... Moderate Unreviewed
CVE-2024-35137 was published Jun 28, 2024
An issue in Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 allows attackers to create passwords... High Unreviewed
CVE-2024-36789 was published Jun 7, 2024
An Unverified Password Change could allow a malicious actor with API access to the device to... Low Unreviewed
CVE-2024-29208 was published May 7, 2024
The LoMag WareHouse Management application version 1.0.20.120 and older were found to allow weak... Moderate Unreviewed
CVE-2024-32213 was published May 1, 2024
A vulnerability was found in Smart Office up to 20240405. It has been classified as problematic.... Low Unreviewed
CVE-2024-3735 was published Apr 13, 2024
Arris SBG6580 devices have predictable default WPA2 security passwords that could lead to... High Unreviewed
CVE-2024-25729 was published Mar 8, 2024
IBM QRadar Suite Products 1.10.12.0 through 1.10.18.0 and IBM Cloud Pak for Security 1.10.0.0... Moderate Unreviewed
CVE-2024-22355 was published Mar 3, 2024
IBM Engineering Requirements Management DOORS 9.7.2.7 does not require that users should have... Moderate Unreviewed
CVE-2023-50305 was published Mar 1, 2024
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability... Moderate Unreviewed
CVE-2024-1345 was published Feb 19, 2024
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability... Moderate Unreviewed
CVE-2024-1346 was published Feb 19, 2024
IBM Security Access Manager Container 10.0.0.0 through 10.0.6.1 does not require that docker... Moderate Unreviewed
CVE-2023-38369 was published Feb 7, 2024
IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0... High Unreviewed
CVE-2023-43016 was published Feb 3, 2024
Weak password requirement vulnerability in Lamassu Bitcoin ATM Douro machines, in its 7.1... Moderate Unreviewed
CVE-2024-0676 was published Jan 30, 2024
A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as... Low Unreviewed
CVE-2024-0347 was published Jan 10, 2024
In Gradle Enterprise before 2023.1, a remote attacker may be able to gain access to a new... Critical Unreviewed
CVE-2023-49238 was published Jan 9, 2024
A vulnerability, which was classified as problematic, was found in RRJ Nueva Ecija Engineer... Low Unreviewed
CVE-2024-0188 was published Jan 2, 2024
A vulnerability was found in PHPGurukul Online Notes Sharing System 1.0. It has been declared as... Low Unreviewed
CVE-2023-7053 was published Dec 22, 2023
An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to gain... Critical Unreviewed
CVE-2023-24049 was published Dec 5, 2023
ProTip! Advisories are also available from the GraphQL API