GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,952
Composer 4,274
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,419
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,598

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,172 advisories

Filter by severity

Sort by

Least recently updated

In OPPOStore iOS App, there's a possible escalation of privilege due to improper input validation. High Unreviewed

CVE-2024-1609 was published Dec 25, 2024

The AirVantage platform is vulnerable to an unauthorized attacker registering previously... High Unreviewed

CVE-2023-31279 was published Dec 21, 2024

There is an insufficient authentication vulnerability in some Huawei smart phone. An... Low Unreviewed

CVE-2020-9250 was published Dec 20, 2024

The Biagiotti Membership plugin for WordPress is vulnerable to authentication bypass in all... Critical Unreviewed

CVE-2024-12287 was published Dec 18, 2024

In OPPO Store APP, there's a possible escalation of privilege due to improper input validation. High Unreviewed

CVE-2024-1610 was published Dec 18, 2024

A logic vulnerability in the the mobile application (com.transsion.applock) can lead to bypassing... Unknown Unreviewed

CVE-2024-12603 was published Dec 13, 2024

The Sign In With Google plugin for WordPress is vulnerable to authentication bypass in all... Critical Unreviewed

CVE-2024-11015 was published Dec 12, 2024

The OAuth Single Sign On – SSO (OAuth Client) plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-10111 was published Dec 12, 2024

Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability High Unreviewed

CVE-2024-49076 was published Dec 12, 2024

CWE-287: Improper Authentication vulnerability exists that could cause Denial of access to the... Moderate Unreviewed

CVE-2024-10511 was published Dec 11, 2024

NVIDIA UFM Enterprise, UFM Appliance, and UFM CyberAI contain a vulnerability where an attacker... High Unreviewed

CVE-2024-0130 was published Dec 6, 2024

An improper authentication vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed

CVE-2024-48859 was published Dec 6, 2024

The Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User... High Unreviewed

CVE-2024-11293 was published Dec 4, 2024

ProjectSend versions prior to r1720 are affected by an improper authentication vulnerability.... Critical Unreviewed

CVE-2024-11680 was published Nov 26, 2024

An image with a version lower than the fuse version may potentially be booted lead to improper... High Unreviewed

CVE-2018-11952 was published Nov 26, 2024

Initial xbl_sec revision does not have all the debug policy features and critical checks. High Unreviewed

CVE-2016-10394 was published Nov 26, 2024

Improper authentication in SQL data source MFA validation in Devolutions Remote Desktop Manager... Moderate Unreviewed

CVE-2024-11671 was published Nov 25, 2024

IPP software prior to v1.71 is vulnerable to default credential vulnerability. This could lead... Moderate Unreviewed

CVE-2022-33862 was published Nov 25, 2024

The web application uses a weak authentication mechanism to verify that a request is coming from... Critical Unreviewed

CVE-2024-45369 was published Nov 23, 2024

Wyze Cam v3 Cloud Infrastructure Improper Authentication Remote Code Execution Vulnerability.... High Unreviewed

CVE-2024-6248 was published Nov 22, 2024

**UNSUPPORTED WHEN ASSIGNED** The improper authentication vulnerability in the Zyxel P-6101C ADSL... High Unreviewed

CVE-2024-11494 was published Nov 20, 2024

A vulnerability was found in Apereo CAS 6.6. It has been classified as critical. This affects an... Moderate Unreviewed

CVE-2024-11209 was published Nov 14, 2024

Windows Task Scheduler Elevation of Privilege Vulnerability High Unreviewed

CVE-2024-49039 was published Nov 12, 2024

A vulnerability was found in pam_access due to the improper handling of tokens in access.conf,... Moderate Unreviewed

CVE-2024-10963 was published Nov 7, 2024

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress... High Unreviewed

CVE-2024-9946 was published Nov 6, 2024

Previous 1 2 3 4 5 … 126 127 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,172 advisories