Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

103,262 advisories

Loading
An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware... High Unreviewed
CVE-2024-53938 was published Dec 3, 2024
An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware... High Unreviewed
CVE-2024-53941 was published Dec 3, 2024
Authenticated remote code execution (RCE) vulnerabilities affect TP-Link Archer, Deco, and Tapo... High Unreviewed
CVE-2024-53375 was published Dec 3, 2024
In OSUInfo of OSUInfo.java, there is a possible escalation of privilege due to improper input... High Unreviewed
CVE-2018-9431 was published Dec 3, 2024
In handle_app_cur_val_response of dtif_rc.cc, there is a possible stack buffer overflow due to a... High Unreviewed
CVE-2018-9418 was published Dec 3, 2024
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820,... High Unreviewed
CVE-2024-39890 was published Dec 2, 2024
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 2100, 1280,... High Unreviewed
CVE-2024-39343 was published Dec 2, 2024
In rpc_msg_handler and related handlers of drivers/misc/mediatek/eccci/port_rpc.c, there is a... High Unreviewed
CVE-2018-9376 was published Dec 2, 2024
In gattServerSendResponseNative of com_android_bluetooth_gatt.cpp, there is a possible out of... High Unreviewed
CVE-2018-9414 was published Dec 2, 2024
In handle_notification_response of btif_rc.cc, there is a possible out of bounds write due to a... High Unreviewed
CVE-2018-9413 was published Dec 2, 2024
In gatts_process_read_by_type_req of gatt_sr.c, there is a possible information disclosure due to... High Unreviewed
CVE-2018-9381 was published Dec 2, 2024
In l2c_lcc_proc_pdu of l2c_fcr.cc, there is a possible out of bounds write due to improper input... High Unreviewed
CVE-2018-9380 was published Dec 2, 2024
An authenticated arbitrary file upload vulnerability in the component /module_admin/upload.php of... High Unreviewed
CVE-2024-53564 was published Dec 2, 2024
Snap One OVRC cloud uses the MAC address as an identifier to provide information when requested.... High Unreviewed
CVE-2024-50380 was published Dec 2, 2024
A vulnerability exists in Snap One OVRC cloud where an attacker can impersonate a Hub device and... High Unreviewed
CVE-2024-50381 was published Dec 2, 2024
rizin before Release v0.6.3 is vulnerable to Uncontrolled Resource Consumption via... High Unreviewed
CVE-2024-31669 was published Dec 2, 2024
Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary... High Unreviewed
CVE-2024-29645 was published Dec 2, 2024
In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an... High Unreviewed
CVE-2024-46906 was published Dec 2, 2024
Cross-Site Request Forgery (CSRF) vulnerability in CMSaccount Photo Video Store allows Cross-Site... High Unreviewed
CVE-2024-53782 was published Dec 2, 2024
In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an... High Unreviewed
CVE-2024-46905 was published Dec 2, 2024
Cross-Site Request Forgery (CSRF) vulnerability in eDoc Intelligence LLC eDoc Easy Tables allows... High Unreviewed
CVE-2024-53793 was published Dec 2, 2024
In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an... High Unreviewed
CVE-2024-46908 was published Dec 2, 2024
In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an... High Unreviewed
CVE-2024-46907 was published Dec 2, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-53792 was published Dec 2, 2024
Cross-Site Request Forgery (CSRF) vulnerability in A.Cihangir BALTACI Google Plus Share and +1... High Unreviewed
CVE-2024-53723 was published Dec 2, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database