GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
93,895 advisories
Filter by severity
Some Huawei wearables have a permission management vulnerability.
High
Unreviewed
CVE-2021-37000
was published
Dec 28, 2024
Some Huawei home music system products have a path traversal vulnerability. Successful...
High
Unreviewed
CVE-2023-7263
was published
Dec 28, 2024
Some Huawei home routers have a connection hijacking vulnerability. Successful exploitation of...
High
Unreviewed
CVE-2023-7266
was published
Dec 28, 2024
The Four-Faith router models F3x24 and F3x36 are affected by an operating system (OS) command...
High
Unreviewed
CVE-2024-12856
was published
Dec 27, 2024
There is an improper privilege management vulnerability in Huawei smart phone product. A local,...
High
Unreviewed
CVE-2020-9080
was published
Dec 27, 2024
There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to...
High
Unreviewed
CVE-2020-9222
was published
Dec 27, 2024
There is an improper interface design vulnerability in Huawei product. A module interface of the...
High
Unreviewed
CVE-2020-9236
was published
Dec 27, 2024
A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS...
High
Unreviewed
CVE-2024-3393
was published
Dec 27, 2024
TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Remote Code Execution in /bin/boa via...
High
Unreviewed
CVE-2024-54907
was published
Dec 26, 2024
Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in...
High
Unreviewed
CVE-2024-51540
was published
Dec 26, 2024
Huawei Home Music System has a path traversal vulnerability. Successful exploitation of this...
High
Unreviewed
CVE-2023-7300
was published
Dec 26, 2024
Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Exposure of Sensitive Information Through...
High
Unreviewed
CVE-2024-53291
was published
Dec 25, 2024
Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Execution with Unnecessary Privileges...
High
Unreviewed
CVE-2024-47978
was published
Dec 25, 2024
Dell SupportAssist for Home PCs versions 4.6.1 and prior and Dell SupportAssist for Business PCs...
High
Unreviewed
CVE-2024-52535
was published
Dec 25, 2024
The WP Data Access – App, Table, Form and Chart Builder plugin plugin for WordPress is vulnerable...
High
Unreviewed
CVE-2024-12428
was published
Dec 25, 2024
The WP Travel Engine – Elementor Widgets | Create Travel Booking Website Using WordPress and...
High
Unreviewed
CVE-2024-12272
was published
Dec 25, 2024
In OPPOStore iOS App, there's a possible escalation of privilege due to improper input validation.
High
Unreviewed
CVE-2024-1609
was published
Dec 25, 2024
Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart)....
High
Unreviewed
CVE-2019-2483
was published
Dec 24, 2024
The PlugVersions – Easily rollback to previous versions of your plugins plugin for WordPress is...
High
Unreviewed
CVE-2024-12881
was published
Dec 24, 2024
A flaw was found in the skupper console, a read-only interface that renders cluster network,...
High
Unreviewed
CVE-2024-12582
was published
Dec 24, 2024
A vulnerability was found in Pagure. Support of symbolic links during repository archiving of...
High
Unreviewed
CVE-2024-47515
was published
Dec 24, 2024
The Custom Login Page Styler – Login Protected Private Site , Change wp-admin login url ,...
High
Unreviewed
CVE-2024-12594
was published
Dec 24, 2024
ColdFusion versions 2023.11, 2021.17 and earlier are affected by an Improper Limitation of a...
High
Unreviewed
CVE-2024-53961
was published
Dec 23, 2024
Incorrect default permissions vulnerability in Evoko Home, affecting version 2.4.2 to 2.7.4. A...
High
Unreviewed
CVE-2024-12903
was published
Dec 23, 2024
ANCHOR from Global Wisdom Software is an integrated product running on a Windows virtual machine....
High
Unreviewed
CVE-2024-12902
was published
Dec 23, 2024
ProTip!
Advisories are also available from the
GraphQL API