GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,946
Composer 4,273
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,235
npm 3,739
NuGet 668
pip 3,417
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,567

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,056 advisories

Filter by severity

Sort by

Least recently updated

Some Honor products are affected by incorrect privilege assignment vulnerability, successful... Low Unreviewed

CVE-2024-47149 was published Dec 26, 2024

Some Honor products are affected by information leak vulnerability, successful exploitation could... Low Unreviewed

CVE-2024-47150 was published Dec 26, 2024

Some Honor products are affected by incorrect privilege assignment vulnerability, successful... Low Unreviewed

CVE-2024-47157 was published Dec 26, 2024

Some Honor products are affected by information leak vulnerability, successful exploitation could... Low Unreviewed

CVE-2024-47156 was published Dec 26, 2024

shadow-utils (aka shadow) 4.4 through 4.17.0 establishes a default /etc/subuid behavior (e.g.,... Low Unreviewed

CVE-2024-56433 was published Dec 26, 2024

An issue was discovered in GitLab CE/EE affecting all versions before 17.6.0 in which users were... Low Unreviewed

CVE-2023-5117 was published Dec 25, 2024

Weak algorithm used to sign RPM package. The following products are affected: Acronis Cyber... Low Unreviewed

CVE-2024-55539 was published Dec 23, 2024

Path Traversal and Insecure Direct Object Reference (IDOR) vulnerabilities in the eSignaViewer... Low Unreviewed

CVE-2024-12014 was published Dec 20, 2024

There is an insufficient authentication vulnerability in some Huawei smart phone. An... Low Unreviewed

CVE-2020-9250 was published Dec 20, 2024

A reflected cross-site scripting (XSS) vulnerability in the 'Entry Chooser' of phpLDAPadmin ... Low Unreviewed

CVE-2024-9101 was published Dec 19, 2024

IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 could allow a remote... Low Unreviewed

CVE-2024-49820 was published Dec 17, 2024

An improper handling of insufficient permissions or privileges affects HCL BigFix Inventory. An... Low Unreviewed

CVE-2024-42194 was published Dec 17, 2024

The Easy Digital Downloads plugin for WordPress is vulnerable to Improper Authorization in... Low Unreviewed

CVE-2024-9654 was published Dec 17, 2024

Improper authorization in handler for custom URL scheme issue in "Shonen Jump+" App for Android... Low Unreviewed

CVE-2024-54125 was published Dec 17, 2024

ChatBar.tsx in Lumos before 1.0.17 parses raw HTML in Markdown because the markdown-to-jsx... Low Unreviewed

CVE-2024-56082 was published Dec 15, 2024

Missing Authorization vulnerability in Analytify Analytify allows Exploiting Incorrectly... Low Unreviewed

CVE-2023-41695 was published Dec 13, 2024

Missing Authorization vulnerability in Popup Maker Popup Maker allows Exploiting Incorrectly... Low Unreviewed

CVE-2022-45819 was published Dec 13, 2024

This issue affects: Secomea GateManager Version 9.5 and all prior versions. Protection Mechanism... Low Unreviewed

CVE-2021-32007 was published Dec 13, 2024

The AR for WordPress plugin for WordPress is vulnerable to unauthorized double extension file... Low Unreviewed

CVE-2024-12300 was published Dec 13, 2024

An issue has been discovered in GitLab EE affecting all versions starting from 14.3 before 17.4.6... Low Unreviewed

CVE-2024-10043 was published Dec 12, 2024

This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed

CVE-2024-44200 was published Dec 12, 2024

The issue was addressed by adding additional logic. This issue is fixed in iPadOS 17.7.3, iOS 18... Low Unreviewed

CVE-2024-54485 was published Dec 12, 2024

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia... Low Unreviewed

CVE-2024-54493 was published Dec 12, 2024

This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed

CVE-2024-44290 was published Dec 12, 2024

IBM InfoSphere DataStage Flow Designer (InfoSphere Information Server 11.7) could allow an... Low Unreviewed

CVE-2023-23472 was published Dec 11, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,056 advisories