GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,986

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

157 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue in the API endpoint /AccountMaster/GetCurrentUserInfo of INROAD before v202402060 allows... Moderate Unreviewed

CVE-2024-46635 was published Sep 30, 2024

In the goTenna Pro ATAK Plugin application, the encryption keys are stored along with a static... Moderate Unreviewed

CVE-2024-43694 was published Sep 26, 2024

In the goTenna Pro application, the encryption keys are stored along with a static IV on the... Moderate Unreviewed

CVE-2024-47122 was published Sep 26, 2024

In the goTenna Pro ATAK Plugin application, the encryption keys are stored along with a static... Moderate Unreviewed

CVE-2024-45374 was published Sep 26, 2024

An issue was discovered in wolfSSL before 5.7.0. A safe-error attack via Rowhammer, namely FAULT... Moderate Unreviewed

CVE-2024-5288 was published Aug 27, 2024

An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker... Moderate Unreviewed

CVE-2024-42677 was published Aug 15, 2024

A lock screen issue was addressed with improved state management. This issue is fixed in watchOS... Moderate Unreviewed

CVE-2024-40813 was published Jul 30, 2024

A vulnerability in Zowe CLI allows local, privileged actors to display securely stored properties... Moderate Unreviewed

CVE-2024-6916 was published Jul 19, 2024

The vulnerability allows a malicious low-privileged PAM user to access information about other... Moderate Unreviewed

CVE-2024-38496 was published Jul 15, 2024

In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by... Moderate Unreviewed

CVE-2024-34721 was published Jul 9, 2024

A vulnerability in the web interface in Brocade Fabric OS before v9.2.1, v9.2.0b, and v9.1.1d... Moderate Unreviewed

CVE-2024-29953 was published Jun 26, 2024

An issue in Daemon PTY Limited FarCry Core framework before 7.2.14 allows attackers to access... Moderate Unreviewed

CVE-2024-35526 was published Jun 25, 2024

An issue in BAS-IP AV-01D, AV-01MD, AV-01MFD, AV-01ED, AV-01KD, AV-01BD, AV-01KBD, AV-02D, AV... Moderate Unreviewed

CVE-2024-37654 was published Jun 22, 2024

When browsing private tabs, some data related to location history or webpage thumbnails could be... Moderate Unreviewed

CVE-2024-38312 was published Jun 13, 2024

Insertion of sensitive information into sent data issue exists in Cybozu Garoon 5.0.0 to 5.15.0.... Moderate Unreviewed

CVE-2024-31400 was published Jun 11, 2024

Insertion of sensitive information into sent data issue exists in Cybozu Garoon 5.5.0 to 6.0.0,... Moderate Unreviewed

CVE-2024-31404 was published Jun 11, 2024

The Custom Field Template plugin for WordPress is vulnerable to Sensitive Information Exposure in... Moderate Unreviewed

CVE-2023-6748 was published Jun 11, 2024

Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 does not properly set the HTTPOnly flag for cookies... Moderate Unreviewed

CVE-2024-36788 was published Jun 7, 2024

Insecure Storage of Sensitive Information vulnerability in WPMU DEV Defender Security allows :... Moderate Unreviewed

CVE-2022-44581 was published May 17, 2024

SAP Business Objects Business Intelligence Platform is vulnerable to Insecure Storage as dynamic... Moderate Unreviewed

CVE-2024-33004 was published May 14, 2024

A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16... Moderate Unreviewed

CVE-2024-27789 was published May 14, 2024

This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed

CVE-2024-23229 was published May 14, 2024

Exposure of Sensitive Information vulnerability exists in the GSLB container, which may allow an... Moderate Unreviewed

CVE-2024-28132 was published May 8, 2024

The WP Meta SEO plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2023-6962 was published May 2, 2024

An issue in LOGINT LoMag Inventory Management v1.0.20.120 and before allows a local attacker to... Moderate Unreviewed

CVE-2024-32211 was published May 1, 2024

Previous 1…3…7 Next

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

157 advisories