Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

240 advisories

Loading
The Call Blocker application 6.6.3 for Android allows unauthorized applications to use exposed... Critical Unreviewed
CVE-2023-29727 was published May 31, 2023
Anonymous user may get the list of existing users managed by the application, that could ease... Moderate Unreviewed
CVE-2023-3064 was published Jun 5, 2023
An issue found in Twilight v.13.3 for Android allows unauthorized apps to cause escalation of... High Unreviewed
CVE-2023-29755 was published Jun 9, 2023
An issue found in Blue Light Filter v.1.5.5 for Android allows unauthorized apps to cause... High Unreviewed
CVE-2023-29757 was published Jun 9, 2023
Default permissions for a properties file were too permissive. Local system users could read... Low Unreviewed
CVE-2023-26427 was published Jun 20, 2023
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2023-32415 was published Jun 23, 2023
Insecure Storage of Sensitive Information vulnerability in Jose Mortellaro Freesoul Deactivate... High Unreviewed
CVE-2023-22687 was published Jul 6, 2023
HCL Launch could disclose sensitive information if a manual edit of a configuration file has been... Moderate Unreviewed
CVE-2023-23348 was published Jul 10, 2023
Exposure of sensitive information to an unauthorized actor issue exists in ELECOM wireless LAN... Moderate Unreviewed
CVE-2023-37563 was published Jul 13, 2023
Progress Chef Infra Server before 15.7 allows a local attacker to exploit a /var/opt/opscode... Moderate Unreviewed
CVE-2023-28864 was published Jul 17, 2023
Information disclosure in password protected surveys in Data Illusion Survey Software Solutions... High Unreviewed
CVE-2022-46484 was published Aug 2, 2023
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator... Moderate Unreviewed
CVE-2023-37439 was published Aug 22, 2023
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 could allow a local user with specific information... Moderate Unreviewed
CVE-2023-29261 was published Sep 5, 2023
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The QMS.Mobile... High Unreviewed
CVE-2023-40728 was published Sep 14, 2023
Insecure storage of sensitive information in Wing FTP Server (User Web Client) allows information... High Unreviewed
CVE-2023-37879 was published Sep 15, 2023
** UNSUPPPORTED WHEN ASSIGNED ** Sending some requests in the web application of the... High Unreviewed
CVE-2023-41965 was published Sep 18, 2023
A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows... High Unreviewed
CVE-2023-32184 was published Sep 19, 2023
vCenter Server contains a partial information disclosure vulnerability. A malicious actor with... Moderate Unreviewed
CVE-2023-34056 was published Oct 25, 2023
A vulnerability in Veeam ONE allows a user with the Veeam ONE Read-Only User role to view the... Moderate Unreviewed
CVE-2023-41723 was published Nov 14, 2023
A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows... Moderate Unreviewed
CVE-2023-6253 was published Nov 22, 2023
Logging of the firestore key within nodejs-firestore Moderate
CVE-2023-6460 was published for @google-cloud/firestore (npm) Dec 4, 2023
abhishekwebcode
IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an... Moderate Unreviewed
CVE-2023-45184 was published Dec 14, 2023
IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 is vulnerable to... High Unreviewed
CVE-2023-45182 was published Dec 14, 2023
Some Honor products are affected by information leak vulnerability, successful exploitation... Low Unreviewed
CVE-2023-23437 was published Dec 29, 2023
Users’ product account authentication data was stored in clear text in The Genie Company Aladdin... Moderate Unreviewed
CVE-2023-5879 was published Jan 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database