GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
10,061 advisories
Filter by severity
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All...
Low
Unreviewed
CVE-2024-50560
was published
Nov 12, 2024
A vulnerability was found in Digistar AG-30 Plus 2.6b. It has been classified as problematic....
Low
Unreviewed
CVE-2024-11126
was published
Nov 12, 2024
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a...
Low
Unreviewed
CVE-2024-48838
was published
Nov 12, 2024
Exposure of sensitive system information to an unauthorized control sphere issue exists in Mesh...
Low
Unreviewed
CVE-2024-47799
was published
Nov 12, 2024
The Multiple Page Generator Plugin – MPG plugin for WordPress is vulnerable to arbitrary file...
Low
Unreviewed
CVE-2024-10672
was published
Nov 12, 2024
Cash Operations does not perform necessary authorization check for an authenticated user,...
Low
Unreviewed
CVE-2024-47587
was published
Nov 12, 2024
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an...
Low
Unreviewed
CVE-2024-10917
was published
Nov 11, 2024
Sensitive information disclosure during file browsing due to improper soft link handling. The...
Low
Unreviewed
CVE-2024-34015
was published
Nov 11, 2024
Certain Cypress (and Broadcom) Wireless Combo chips, when a January 2021 firmware update is not...
Low
Unreviewed
CVE-2020-10368
was published
Nov 11, 2024
Mattermost versions 9.11.x <= 9.11.2, and 9.5.x <= 9.5.10 fail to protect the mfa code against...
Low
Unreviewed
CVE-2024-36250
was published
Nov 9, 2024
Mattermost versions 9.10.x <= 9.10.2, 9.11.x <= 9.11.1, 9.5.x <= 9.5.9 and 10.0.x <= 10.0.0 fail...
Low
Unreviewed
CVE-2024-42000
was published
Nov 9, 2024
Northern.tech Hosted Mender before 2024.07.11 allows SSRF.
Low
Unreviewed
CVE-2024-47190
was published
Nov 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
udf: refactor inode_bmap()...
Low
Unreviewed
CVE-2024-50211
was published
Nov 8, 2024
Dell PowerProtect DD, versions prior to 7.7.5.50, contains an Exposure of Sensitive Information...
Low
Unreviewed
CVE-2024-48011
was published
Nov 8, 2024
HCL BigFix Compliance is affected by a missing secure flag on a cookie. If a secure flag is not...
Low
Unreviewed
CVE-2024-30142
was published
Nov 7, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to upload...
Low
Unreviewed
CVE-2024-20528
was published
Nov 6, 2024
A vulnerability was found in mariazevedo88 travels-java-api up to 5.0.1 and classified as...
Low
Unreviewed
CVE-2024-10920
was published
Nov 6, 2024
Improper authorization in Settings prior to SMR Nov-2024 Release 1 allows physical attackers to...
Low
Unreviewed
CVE-2024-34682
was published
Nov 6, 2024
Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to...
Low
Unreviewed
CVE-2024-34675
was published
Nov 6, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: netconsole: fix wrong...
Low
Unreviewed
CVE-2024-50092
was published
Nov 5, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through out-of-bounds...
Low
Unreviewed
CVE-2024-47402
was published
Nov 5, 2024
A vulnerability, which was classified as critical, was found in ThinkAdmin up to 6.1.67. Affected...
Low
Unreviewed
CVE-2024-10749
was published
Nov 4, 2024
A vulnerability, which was classified as problematic, has been found in Cosmote Greece What's Up...
Low
Unreviewed
CVE-2024-10748
was published
Nov 4, 2024
When using Arm Cortex-M Security Extensions (CMSE), Secure stack
contents can be leaked to Non...
Low
Unreviewed
CVE-2024-7883
was published
Oct 31, 2024
A denial of service vulnerability exists in the Web Application functionality of LevelOne WBR...
Low
Unreviewed
CVE-2024-33623
was published
Oct 30, 2024
ProTip!
Advisories are also available from the
GraphQL API