Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

208 advisories

Loading
A security bypass vulnerability exists in the Removable Media Encryption (RME)component of... Moderate Unreviewed
CVE-2024-3334 was published Nov 15, 2024
A vulnerability in the web-based management interface of Cisco Smart Software Manager On... Moderate Unreviewed
CVE-2022-20939 was published Nov 15, 2024
In lunary-ai/lunary versions up to and including 1.2.5, an information disclosure vulnerability... Critical Unreviewed
CVE-2024-3501 was published Nov 14, 2024
In lunary-ai/lunary versions up to and including 1.2.5, an information disclosure vulnerability... Critical Unreviewed
CVE-2024-3502 was published Nov 14, 2024
An authentication bypass vulnerability exists in the affected product. The vulnerability exists... Critical Unreviewed
CVE-2024-10943 was published Nov 12, 2024
Moodle admin presets export tool includes some secrets that should not be exported Low
CVE-2024-43427 was published for moodle/moodle (Composer) Nov 11, 2024
Insufficient validation performed on the REST API License file in Paxton Net2 before 6.07.14023... High Unreviewed
CVE-2024-48939 was published Nov 11, 2024
An issue was discovered on One2Track 2019-12-08 devices. Confidential information is needlessly... Moderate Unreviewed
CVE-2019-20469 was published Nov 7, 2024
Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local... Moderate Unreviewed
CVE-2024-34677 was published Nov 6, 2024
The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for... High Unreviewed
CVE-2024-10028 was published Nov 6, 2024
Altai Technologies Ltd Altai IX500 Indoor 22 802.11ac Wave 2 AP After login, there are file reads... Moderate Unreviewed
CVE-2024-51399 was published Nov 1, 2024
Yealink Meeting Server before V26.0.0.67 is vulnerable to sensitive data exposure in the server... High Unreviewed
CVE-2024-48352 was published Nov 1, 2024
Yealink Meeting Server before V26.0.0.67 allows attackers to obtain static key information from a... High Unreviewed
CVE-2024-48353 was published Nov 1, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2024-44257 was published Oct 29, 2024
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44216 was published Oct 29, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Low Unreviewed
CVE-2024-44275 was published Oct 28, 2024
A logic issue was addressed with improved state management. This issue is fixed in iOS 18.1 and... Moderate Unreviewed
CVE-2024-44263 was published Oct 28, 2024
An issue existed in the parsing of URLs. This issue was addressed with improved input validation.... Moderate Unreviewed
CVE-2024-44213 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An... Moderate Unreviewed
CVE-2024-44174 was published Oct 28, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44175 was published Oct 28, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed
CVE-2024-44222 was published Oct 28, 2024
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed
CVE-2022-30359 was published Oct 25, 2024
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed
CVE-2022-30361 was published Oct 25, 2024
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker... Moderate Unreviewed
CVE-2024-10041 was published Oct 23, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform... Moderate Unreviewed
CVE-2024-20462 was published Oct 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database