GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,055
Composer 4,315
Erlang 31
GitHub Actions 21
Go 2,073
Maven 5,248
npm 3,744
NuGet 674
pip 3,433
Pub 12
RubyGems 892
Rust 880
Swift 37

Unreviewed advisories

All unreviewed 241,041

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,099 advisories

Filter by severity

Sort by

Least recently updated

Windows Smart Card Reader Information Disclosure Vulnerability Low Unreviewed

CVE-2025-21312 was published Jan 14, 2025

An improper neutralization of script-related html tags in a web page (basic xss) in Fortinet... Low Unreviewed

CVE-2024-52967 was published Jan 14, 2025

An improper verification of source of a communication channel vulnerability [CWE-940] in... Low Unreviewed

CVE-2024-36506 was published Jan 14, 2025

An Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2... Low Unreviewed

CVE-2024-46669 was published Jan 14, 2025

A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 through 7.4.6, 7.2.0 through 7.2... Low Unreviewed

CVE-2024-52963 was published Jan 14, 2025

A use of hard-coded cryptographic key in Fortinet FortiClientWindows version 7.4.0, 7.2.x all... Low Unreviewed

CVE-2024-50564 was published Jan 14, 2025

An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7... Low Unreviewed

CVE-2024-46665 was published Jan 14, 2025

A improper neutralization of special elements used in an sql command ('sql injection') in... Low Unreviewed

CVE-2024-55593 was published Jan 14, 2025

Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated... Low Unreviewed

CVE-2022-46143 was published Dec 13, 2022

A vulnerability has been identified in Industrial Edge Management OS (IEM-OS) (All versions).... Low Unreviewed

CVE-2024-45385 was published Jan 14, 2025

HCL MyXalytics is affected by a cleartext transmission of sensitive information vulnerability. ... Low Unreviewed

CVE-2024-42181 was published Jan 13, 2025

HCL MyXalytics is affected by sensitive information disclosure vulnerability. The HTTP response... Low Unreviewed

CVE-2024-42179 was published Jan 13, 2025

HCL MyXalytics is affected by a malicious file upload vulnerability. The application accepts... Low Unreviewed

CVE-2024-42180 was published Jan 13, 2025

HCL MyXalytics is affected by a weak input validation vulnerability. The application accepts... Low Unreviewed

CVE-2024-42175 was published Jan 11, 2025

HCL MyXalytics is affected by username enumeration vulnerability. This allows a malicious user... Low Unreviewed

CVE-2024-42174 was published Jan 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Acquia DAM allows Cross Site Request... Low Unreviewed

CVE-2024-13261 was published Jan 9, 2025

An issue was discovered in REDCap 14.9.6. It has an action=myprojects&logout=1 CSRF issue in the... Low Unreviewed

CVE-2025-23113 was published Jan 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal POST File allows Cross Site Request... Low Unreviewed

CVE-2024-13293 was published Jan 9, 2025

There is an improper authorization vulnerability in some Huawei smartphones. An attacker could... Low Unreviewed

CVE-2020-9081 was published Dec 27, 2024

The Permission Model assumes that any path starting with two backslashes \ has a four-character... Low Unreviewed

CVE-2024-37372 was published Jan 9, 2025

A buffer overflow vulnerability in the packet handoff plugin allows an attacker to overwrite... Low Unreviewed

CVE-2024-10106 was published Jan 9, 2025

A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches ... Low Unreviewed

CVE-2024-54010 was published Jan 8, 2025

Under certain circumstances, a user opt-in setting that Focus should require authentication... Low Unreviewed

CVE-2025-0245 was published Jan 7, 2025

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix unconditional... Low Unreviewed

CVE-2021-46971 was published Feb 27, 2024

An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0... Low Unreviewed

CVE-2024-48455 was published Jan 7, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,099 advisories