GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
4,494 advisories
Filter by severity
A vulnerability was found in running-elephant Datart 1.0.0-rc3. It has been rated as critical....
Moderate
Unreviewed
CVE-2024-12994
was published
Dec 28, 2024
IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1
could allow a non-privileged local user to exploit a...
Moderate
Unreviewed
CVE-2024-47102
was published
Dec 25, 2024
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on...
Moderate
Unreviewed
CVE-2024-41887
was published
Dec 24, 2024
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on...
Moderate
Unreviewed
CVE-2024-41886
was published
Dec 24, 2024
In multiple functions of multiple files, there is a possible way to make the device unusable due...
Moderate
Unreviewed
CVE-2023-21143
was published
Jun 15, 2023
In multiple functions of JobStore.java, there is a possible way to cause a crash on startup due...
Moderate
Unreviewed
CVE-2023-21136
was published
Jun 15, 2023
A log spoofing flaw was found in the Tuned package due to improper sanitization of some API...
Moderate
Unreviewed
CVE-2024-52337
was published
Nov 26, 2024
Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Hostname spoofing in...
Moderate
Unreviewed
CVE-2018-12123
was published
May 13, 2022
Denial of service (DoS) vulnerability in the installation module
Impact: Successful exploitation...
Moderate
Unreviewed
CVE-2024-54101
was published
Dec 12, 2024
Read/Write vulnerability in the image decoding module
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-54108
was published
Dec 12, 2024
Vulnerability of improper access control in the secure input module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-54100
was published
Dec 12, 2024
Read/Write vulnerability in the image decoding module
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-54109
was published
Dec 12, 2024
Windows Mobile Broadband Driver Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-49073
was published
Dec 12, 2024
Windows Mobile Broadband Driver Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-49087
was published
Dec 12, 2024
Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper input...
Moderate
Unreviewed
CVE-2024-45761
was published
Dec 9, 2024
A vulnerability, which was classified as problematic, has been found in SourceCodester Phone...
Moderate
Unreviewed
CVE-2024-12353
was published
Dec 9, 2024
A vulnerability has been found in SourceCodester Phone Contact Manager System 1.0 and classified...
Moderate
Unreviewed
CVE-2024-12355
was published
Dec 9, 2024
A vulnerability classified as critical was found in horilla up to 1.2.1. This vulnerability...
Moderate
Unreviewed
CVE-2024-12138
was published
Dec 4, 2024
Improper Input Validation vulnerability in RestApp Inc. Online Ordering System allows Integer...
Moderate
Unreviewed
CVE-2024-7488
was published
Dec 4, 2024
An improper input validation vulnerability leads to device crashes in certain ASUS router models....
Moderate
Unreviewed
CVE-2024-11985
was published
Dec 4, 2024
A path traversal vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023...
Moderate
Unreviewed
CVE-2023-41266
was published
Aug 30, 2023
Improper input validation in ARM® Trusted Firmware used in AMD’s Zynq™ UltraScale+™) MPSoC/RFSoC...
Moderate
Unreviewed
CVE-2023-31339
was published
Aug 13, 2024
The command ctl_persistent_reserve_out allows the caller to specify an arbitrary size which will...
Moderate
Unreviewed
CVE-2024-39281
was published
Nov 12, 2024
A vulnerability in the web UI of Cisco Firepower Management Center (FMC) Software could allow an...
Moderate
Unreviewed
CVE-2020-3307
was published
May 24, 2022
A vulnerability in the stream reassembly component of Cisco Firepower Threat Defense Software,...
Moderate
Unreviewed
CVE-2019-1978
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API