GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,434

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

171 advisories

Filter by severity

Sort by

Least recently updated

Insertion of sensitive information into sent data issue exists in Cybozu Garoon 5.0.0 to 5.15.0.... Moderate Unreviewed

CVE-2024-31400 was published Jun 11, 2024

An issue was discovered on One2Track 2019-12-08 devices. Confidential information is needlessly... Moderate Unreviewed

CVE-2019-20469 was published Nov 7, 2024

An issue in Daemon PTY Limited FarCry Core framework before 7.2.14 allows attackers to access... Moderate Unreviewed

CVE-2024-35526 was published Jun 25, 2024

Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 does not properly set the HTTPOnly flag for cookies... Moderate Unreviewed

CVE-2024-36788 was published Jun 7, 2024

An issue was discovered in Atos Eviden SMC xScale before 1.6.6. During initialization of nodes,... High Unreviewed

CVE-2024-42018 was published Oct 11, 2024

A vulnerability has been discovered in all versions of Smartplay headunits, which are widely used... High Unreviewed

CVE-2024-39339 was published Sep 18, 2024

An issue was discovered in Infinera hiT 7300 5.60.50. Hidden functionality in the web interface... Low Unreviewed

CVE-2024-28808 was published Sep 30, 2024

Exposure of sensitive information to an unauthorized actor issue exists in ELECOM wireless LAN... Moderate Unreviewed

CVE-2023-37563 was published Jul 13, 2023

The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for... High Unreviewed

CVE-2024-10028 was published Nov 6, 2024

In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by... Moderate Unreviewed

CVE-2024-34721 was published Jul 9, 2024

Yealink Meeting Server before V26.0.0.67 is vulnerable to sensitive data exposure in the server... High Unreviewed

CVE-2024-48352 was published Nov 1, 2024

Yealink Meeting Server before V26.0.0.67 allows attackers to obtain static key information from a... High Unreviewed

CVE-2024-48353 was published Nov 1, 2024

Altai Technologies Ltd Altai IX500 Indoor 22 802.11ac Wave 2 AP After login, there are file reads... Moderate Unreviewed

CVE-2024-51399 was published Nov 1, 2024

An issue in LOGINT LoMag Inventory Management v1.0.20.120 and before allows a local attacker to... Moderate Unreviewed

CVE-2024-32211 was published May 1, 2024

HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability... Moderate Unreviewed

CVE-2024-23561 was published Apr 15, 2024

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker... Moderate Unreviewed

CVE-2024-10041 was published Oct 23, 2024

The issue was resolved by sanitizing logging This issue is fixed in watchOS 10.1, macOS Sonoma 14... Low Unreviewed

CVE-2023-42823 was published Feb 21, 2024

OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed

CVE-2022-30359 was published Oct 25, 2024

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Low Unreviewed

CVE-2024-21211 was published Oct 15, 2024

A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform... Moderate Unreviewed

CVE-2024-20462 was published Oct 16, 2024

An issue existed in the parsing of URLs. This issue was addressed with improved input validation.... Moderate Unreviewed

CVE-2024-44213 was published Oct 28, 2024

This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed

CVE-2024-23229 was published May 14, 2024

A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the... Moderate Unreviewed

CVE-2024-25360 was published Feb 12, 2024

When browsing private tabs, some data related to location history or webpage thumbnails could be... Moderate Unreviewed

CVE-2024-38312 was published Jun 13, 2024

An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker... Moderate Unreviewed

CVE-2024-42677 was published Aug 15, 2024

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

171 advisories