GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,477

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

105 advisories

Filter by severity

Sort by

Least recently updated

Insertion of sensitive information into sent data issue exists in Cybozu Garoon 5.5.0 to 6.0.0,... Moderate Unreviewed

CVE-2024-31404 was published Jun 11, 2024

An issue in BAS-IP AV-01D, AV-01MD, AV-01MFD, AV-01ED, AV-01KD, AV-01BD, AV-01KBD, AV-02D, AV... Moderate Unreviewed

CVE-2024-37654 was published Jun 22, 2024

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed

CVE-2024-23205 was published Mar 8, 2024

This issue was addressed through improved state management. This issue is fixed in tvOS 17.4, iOS... Moderate Unreviewed

CVE-2024-23241 was published Mar 8, 2024

An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker... Moderate Unreviewed

CVE-2024-42677 was published Aug 15, 2024

A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16... Moderate Unreviewed

CVE-2024-27789 was published May 14, 2024

A security bypass vulnerability exists in the Removable Media Encryption (RME)component of... Moderate Unreviewed

CVE-2024-3334 was published Nov 15, 2024

An issue in uverif v.2.0 allows a remote attacker to obtain sensitive information. Moderate Unreviewed

CVE-2024-26559 was published Feb 29, 2024

A vulnerability in the web-based management interface of Cisco Smart Software Manager On... Moderate Unreviewed

CVE-2022-20939 was published Nov 15, 2024

An issue in the API endpoint /AccountMaster/GetCurrentUserInfo of INROAD before v202402060 allows... Moderate Unreviewed

CVE-2024-46635 was published Sep 30, 2024

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.1, macOS... Moderate Unreviewed

CVE-2023-42840 was published Feb 21, 2024

Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local... Moderate Unreviewed

CVE-2024-34677 was published Nov 6, 2024

Insertion of sensitive information into sent data issue exists in Cybozu Garoon 5.0.0 to 5.15.0.... Moderate Unreviewed

CVE-2024-31400 was published Jun 11, 2024

An issue was discovered on One2Track 2019-12-08 devices. Confidential information is needlessly... Moderate Unreviewed

CVE-2019-20469 was published Nov 7, 2024

An issue in Daemon PTY Limited FarCry Core framework before 7.2.14 allows attackers to access... Moderate Unreviewed

CVE-2024-35526 was published Jun 25, 2024

Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 does not properly set the HTTPOnly flag for cookies... Moderate Unreviewed

CVE-2024-36788 was published Jun 7, 2024

Exposure of sensitive information to an unauthorized actor issue exists in ELECOM wireless LAN... Moderate Unreviewed

CVE-2023-37563 was published Jul 13, 2023

In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by... Moderate Unreviewed

CVE-2024-34721 was published Jul 9, 2024

Altai Technologies Ltd Altai IX500 Indoor 22 802.11ac Wave 2 AP After login, there are file reads... Moderate Unreviewed

CVE-2024-51399 was published Nov 1, 2024

An issue in LOGINT LoMag Inventory Management v1.0.20.120 and before allows a local attacker to... Moderate Unreviewed

CVE-2024-32211 was published May 1, 2024

HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability... Moderate Unreviewed

CVE-2024-23561 was published Apr 15, 2024

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker... Moderate Unreviewed

CVE-2024-10041 was published Oct 23, 2024

OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed

CVE-2022-30359 was published Oct 25, 2024

A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform... Moderate Unreviewed

CVE-2024-20462 was published Oct 16, 2024

An issue existed in the parsing of URLs. This issue was addressed with improved input validation.... Moderate Unreviewed

CVE-2024-44213 was published Oct 28, 2024

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

105 advisories