GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
208 advisories
Filter by severity
In the goTenna Pro ATAK Plugin application, the encryption keys are
stored along with a static...
Moderate
Unreviewed
CVE-2024-45374
was published
Sep 26, 2024
An issue in the API endpoint /AccountMaster/GetCurrentUserInfo of INROAD before v202402060 allows...
Moderate
Unreviewed
CVE-2024-46635
was published
Sep 30, 2024
An issue was discovered in Infinera hiT 7300 5.60.50. Hidden functionality in the web interface...
Low
Unreviewed
CVE-2024-28808
was published
Sep 30, 2024
HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could...
Low
Unreviewed
CVE-2024-30132
was published
Oct 1, 2024
An issue was discovered in Atos Eviden SMC xScale before 1.6.6. During initialization of nodes,...
High
Unreviewed
CVE-2024-42018
was published
Oct 11, 2024
An issue in Plug n Play Camera com.wisdomcity.zwave 1.1.0 allows a remote attacker to obtain...
High
Unreviewed
CVE-2024-48770
was published
Oct 11, 2024
Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite (component: User...
Moderate
Unreviewed
CVE-2024-21258
was published
Oct 15, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition...
Low
Unreviewed
CVE-2024-21211
was published
Oct 15, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform...
Moderate
Unreviewed
CVE-2024-20462
was published
Oct 16, 2024
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker...
Moderate
Unreviewed
CVE-2024-10041
was published
Oct 23, 2024
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET...
Moderate
Unreviewed
CVE-2022-30359
was published
Oct 25, 2024
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET...
Moderate
Unreviewed
CVE-2022-30361
was published
Oct 25, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Low
Unreviewed
CVE-2024-44275
was published
Oct 28, 2024
A logic issue was addressed with improved state management. This issue is fixed in iOS 18.1 and...
Moderate
Unreviewed
CVE-2024-44263
was published
Oct 28, 2024
An issue existed in the parsing of URLs. This issue was addressed with improved input validation....
Moderate
Unreviewed
CVE-2024-44213
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An...
Moderate
Unreviewed
CVE-2024-44174
was published
Oct 28, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2024-44175
was published
Oct 28, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in...
Low
Unreviewed
CVE-2024-44222
was published
Oct 28, 2024
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2024-44216
was published
Oct 29, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in...
Moderate
Unreviewed
CVE-2024-44257
was published
Oct 29, 2024
Altai Technologies Ltd Altai IX500 Indoor 22 802.11ac Wave 2 AP After login, there are file reads...
Moderate
Unreviewed
CVE-2024-51399
was published
Nov 1, 2024
Yealink Meeting Server before V26.0.0.67 is vulnerable to sensitive data exposure in the server...
High
Unreviewed
CVE-2024-48352
was published
Nov 1, 2024
Yealink Meeting Server before V26.0.0.67 allows attackers to obtain static key information from a...
High
Unreviewed
CVE-2024-48353
was published
Nov 1, 2024
The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for...
High
Unreviewed
CVE-2024-10028
was published
Nov 6, 2024
Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local...
Moderate
Unreviewed
CVE-2024-34677
was published
Nov 6, 2024
ProTip!
Advisories are also available from the
GraphQL API