Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

94 advisories

Loading
Insertion of sensitive information into sent data issue exists in Cybozu Garoon 5.0.0 to 5.15.0.... Moderate Unreviewed
CVE-2024-31400 was published Jun 11, 2024
An issue was discovered on One2Track 2019-12-08 devices. Confidential information is needlessly... Moderate Unreviewed
CVE-2019-20469 was published Nov 7, 2024
An issue in Daemon PTY Limited FarCry Core framework before 7.2.14 allows attackers to access... Moderate Unreviewed
CVE-2024-35526 was published Jun 25, 2024
Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 does not properly set the HTTPOnly flag for cookies... Moderate Unreviewed
CVE-2024-36788 was published Jun 7, 2024
Exposure of sensitive information to an unauthorized actor issue exists in ELECOM wireless LAN... Moderate Unreviewed
CVE-2023-37563 was published Jul 13, 2023
In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by... Moderate Unreviewed
CVE-2024-34721 was published Jul 9, 2024
Altai Technologies Ltd Altai IX500 Indoor 22 802.11ac Wave 2 AP After login, there are file reads... Moderate Unreviewed
CVE-2024-51399 was published Nov 1, 2024
An issue in LOGINT LoMag Inventory Management v1.0.20.120 and before allows a local attacker to... Moderate Unreviewed
CVE-2024-32211 was published May 1, 2024
HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability... Moderate Unreviewed
CVE-2024-23561 was published Apr 15, 2024
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker... Moderate Unreviewed
CVE-2024-10041 was published Oct 23, 2024
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed
CVE-2022-30359 was published Oct 25, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform... Moderate Unreviewed
CVE-2024-20462 was published Oct 16, 2024
An issue existed in the parsing of URLs. This issue was addressed with improved input validation.... Moderate Unreviewed
CVE-2024-44213 was published Oct 28, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2024-23229 was published May 14, 2024
A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the... Moderate Unreviewed
CVE-2024-25360 was published Feb 12, 2024
When browsing private tabs, some data related to location history or webpage thumbnails could be... Moderate Unreviewed
CVE-2024-38312 was published Jun 13, 2024
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker... Moderate Unreviewed
CVE-2024-42677 was published Aug 15, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could... Moderate Unreviewed
CVE-2024-20050 was published Apr 1, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An... Moderate Unreviewed
CVE-2024-44174 was published Oct 28, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44175 was published Oct 28, 2024
A lock screen issue was addressed with improved state management. This issue is fixed in watchOS... Moderate Unreviewed
CVE-2024-40813 was published Jul 30, 2024
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed
CVE-2022-30361 was published Oct 25, 2024
HCL Launch could disclose sensitive information if a manual edit of a configuration file has been... Moderate Unreviewed
CVE-2023-23348 was published Jul 10, 2023
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2024-44257 was published Oct 29, 2024
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44216 was published Oct 29, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database