Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

103,267 advisories

Loading
WeGIA v3.2.0 was discovered to contain a Cross-Site Request Forgery (CSRF). High Unreviewed
CVE-2024-53472 was published Dec 5, 2024
This vulnerability exists in the TP-Link Archer C50 due to improper signature verification... High Unreviewed
CVE-2024-54126 was published Dec 5, 2024
User Interface (UI) Misrepresentation of Critical Information vulnerability in Documenso allows... High Unreviewed
CVE-2024-52271 was published Dec 5, 2024
Configuration Download vulnerabilities allow access to dependency configuration information. ... High Unreviewed
CVE-2024-51542 was published Dec 5, 2024
Service Control vulnerabilities allow access to service restart requests and vm configuration... High Unreviewed
CVE-2024-51544 was published Dec 5, 2024
A vulnerability in the SonicWall SMA100 SSLVPN web management interface allows remote attackers... High Unreviewed
CVE-2024-45318 was published Dec 5, 2024
Heap-based buffer overflow vulnerability in the SonicWall SMA100 SSLVPN due to the use of strcpy.... High Unreviewed
CVE-2024-40763 was published Dec 5, 2024
Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly... High Unreviewed
CVE-2024-51554 was published Dec 5, 2024
Dangerous File Upload vulnerabilities allow upload of malicious scripts.  Affected products: ... High Unreviewed
CVE-2024-51548 was published Dec 5, 2024
Credentials Disclosure vulnerabilities allow access to on board project back-up bundles. ... High Unreviewed
CVE-2024-51546 was published Dec 5, 2024
Web browser interface may manipulate application username/password in clear text or Base64... High Unreviewed
CVE-2024-6515 was published Dec 5, 2024
Information Disclosure vulnerabilities allow access to application configuration information. ... High Unreviewed
CVE-2024-51543 was published Dec 5, 2024
Local File Inclusion vulnerabilities allow access to sensitive system information.  Affected... High Unreviewed
CVE-2024-51541 was published Dec 5, 2024
A vulnerability in the SonicWall SMA100 SSLVPN firmware 10.2.1.13-72sv and earlier versions... High Unreviewed
CVE-2024-53703 was published Dec 5, 2024
Server-Side Request Forgery vulnerabilities were found providing a potential for access to... High Unreviewed
CVE-2024-6784 was published Dec 5, 2024
Denial of Service vulnerabilities where found providing a potiential for device service... High Unreviewed
CVE-2024-48843 was published Dec 5, 2024
Cross Site Request Forgery vulnerabilities where found providing a potiential for exposing... High Unreviewed
CVE-2024-48846 was published Dec 5, 2024
MD5 Checksum Bypass vulnerabilities where found exploiting a weakness in the way an application... High Unreviewed
CVE-2024-48847 was published Dec 5, 2024
Denial of Service vulnerabilities where found providing a potiential for device service... High Unreviewed
CVE-2024-48844 was published Dec 5, 2024
Fileszie Check vulnerabilities allow a malicious user to bypass size limits or overload to the... High Unreviewed
CVE-2024-11316 was published Dec 5, 2024
User Interface (UI) Misrepresentation of Critical Information vulnerability in DropBox Sign... High Unreviewed
CVE-2024-52270 was published Dec 5, 2024
Inclusion of undocumented features or chicken bits issue exists in UD-LT1 firmware Ver.2.1.8 and... High Unreviewed
CVE-2024-52564 was published Dec 5, 2024
UD-LT1 firmware Ver.2.1.8 and earlier and UD-LT1/EX firmware Ver.2.1.8 and earlier allow a remote... High Unreviewed
CVE-2024-47133 was published Dec 5, 2024
The Free Responsive Testimonials, Social Proof Reviews, and Customer Reviews – Stars Testimonials... High Unreviewed
CVE-2024-11429 was published Dec 5, 2024
In rpc_msg_handler and related handlers of drivers/misc/mediatek/eccci/port_rpc.c, there is a... High Unreviewed
CVE-2018-9396 was published Dec 5, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database