Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,263
Erlang
31
GitHub Actions
21
Go
2,033
Maven
5,000+
npm
3,732
NuGet
662
pip
3,411
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,490 advisories

Loading
Vulnerability of improper access control in the secure input module Impact: Successful... Moderate Unreviewed
CVE-2024-54100 was published Dec 12, 2024
Denial of service (DoS) vulnerability in the installation module Impact: Successful exploitation... Moderate Unreviewed
CVE-2024-54101 was published Dec 12, 2024
Read/Write vulnerability in the image decoding module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-54108 was published Dec 12, 2024
Read/Write vulnerability in the image decoding module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-54109 was published Dec 12, 2024
Windows Mobile Broadband Driver Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-49073 was published Dec 12, 2024
Windows Mobile Broadband Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-49087 was published Dec 12, 2024
Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper input... Moderate Unreviewed
CVE-2024-45761 was published Dec 9, 2024
A vulnerability, which was classified as problematic, has been found in SourceCodester Phone... Moderate Unreviewed
CVE-2024-12353 was published Dec 9, 2024
A vulnerability has been found in SourceCodester Phone Contact Manager System 1.0 and classified... Moderate Unreviewed
CVE-2024-12355 was published Dec 9, 2024
Improper Input Validation vulnerability in RestApp Inc. Online Ordering System allows Integer... Moderate Unreviewed
CVE-2024-7488 was published Dec 4, 2024
A vulnerability classified as critical was found in horilla up to 1.2.1. This vulnerability... Moderate Unreviewed
CVE-2024-12138 was published Dec 4, 2024
An improper input validation vulnerability leads to device crashes in certain ASUS router models.... Moderate Unreviewed
CVE-2024-11985 was published Dec 4, 2024
A log spoofing flaw was found in the Tuned package due to improper sanitization of some API... Moderate Unreviewed
CVE-2024-52337 was published Nov 26, 2024
A path traversal vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023... Moderate Unreviewed
CVE-2023-41266 was published Aug 30, 2023
Improper input validation in ARM® Trusted Firmware used in AMD’s Zynq™ UltraScale+™) MPSoC/RFSoC... Moderate Unreviewed
CVE-2023-31339 was published Aug 13, 2024
The command ctl_persistent_reserve_out allows the caller to specify an arbitrary size which will... Moderate Unreviewed
CVE-2024-39281 was published Nov 12, 2024
A vulnerability in the stream reassembly component of Cisco Firepower Threat Defense Software,... Moderate Unreviewed
CVE-2019-1978 was published May 24, 2022
A vulnerability in the web UI of Cisco Firepower Management Center (FMC) Software could allow an... Moderate Unreviewed
CVE-2020-3307 was published May 24, 2022
A vulnerability in the normalization functionality of Cisco Firepower Threat Defense Software,... Moderate Unreviewed
CVE-2019-1981 was published May 24, 2022
A vulnerability was found in welliamcao OpsManage 3.0.1/3.0.2/3.0.3/3.0.4/3.0.5. It has been... Moderate Unreviewed
CVE-2024-11662 was published Nov 25, 2024
Logsign Unified SecOps Platform delete_gsuite_key_file Input Validation Arbitrary File Deletion... Moderate Unreviewed
CVE-2024-9257 was published Nov 22, 2024
Input verification vulnerability in the account module.Successful exploitation of this... Moderate Unreviewed
CVE-2023-52368 was published Feb 18, 2024
Possible out of bound access in audio module due to lack of validation of user provided input. Moderate Unreviewed
CVE-2021-30299 was published Nov 22, 2024
Improper input validation in some Zoom Apps before version 6.2.0 may allow an unauthenticated... Moderate Unreviewed
CVE-2024-45422 was published Nov 19, 2024
An HTML injection vulnerability exists where an authenticated, remote attacker with... Moderate Unreviewed
CVE-2024-1471 was published Feb 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database