Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

44 advisories

Loading
There is a possible escalation of privilege due to test/debugging code left in a production build... High Unreviewed
CVE-2025-36899 was published Sep 4, 2025
Information disclosure while capturing logs as eSE debug messages are logged. Moderate Unreviewed
CVE-2025-21472 was published Aug 6, 2025
: Active Debug Code vulnerability in ABB Switch Actuator 4 DU-83330, ABB Switch actuator, door... High Unreviewed
CVE-2025-7705 was published Jul 22, 2025
An open debug interface was reported in the Legion Space software included on certain Legion... Moderate Unreviewed
CVE-2025-1479 was published May 30, 2025
NASA CryptoLib before 1.3.2 uses Extended Procedures that are a Work in Progress (not intended... Low Unreviewed
CVE-2025-46674 was published Apr 27, 2025
A vulnerability was found in Netis WF-2404 1.1.124EN. It has been declared as critical. This... High Unreviewed
CVE-2025-2919 was published Mar 28, 2025
A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.90), SIPROTEC... High Unreviewed
CVE-2024-53648 was published Feb 11, 2025
The Four-Faith F3x36 router using firmware v2.0.0 is vulnerable to authentication bypass due to... Critical Unreviewed
CVE-2024-9643 was published Feb 4, 2025
Multiple SHARP routers leave the hidden debug function enabled. An arbitrary OS command may be... Critical Unreviewed
CVE-2024-46873 was published Dec 23, 2024
A vulnerability in Cisco&nbsp;RCM for Cisco&nbsp;StarOS Software could allow an unauthenticated,... High Unreviewed
CVE-2022-20649 was published Nov 15, 2024
Active debug code vulnerability exists in Mesh Wi-Fi router RP562B firmware version v1.0.2 and... Moderate Unreviewed
CVE-2024-29075 was published Nov 12, 2024
Smart-tab Android app installed April 2023 or earlier contains an active debug code vulnerability... Moderate Unreviewed
CVE-2024-41999 was published Sep 30, 2024
In TBD of TBD, there is a possible LCS signing enforcement missing due to test/debugging code... High Unreviewed
CVE-2024-44092 was published Sep 13, 2024
A potential vulnerability was reported in the ThinkPad L390 Yoga and 10w Notebook that could... Moderate Unreviewed
CVE-2024-7756 was published Sep 13, 2024
Default installation of `synthetic-monitoring-agent` exposes sensitive information Moderate
CVE-2022-46156 was published for github.com/grafana/synthetic-monitoring-agent (Go) Sep 6, 2024
iamwillbar
FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. contain an... High Unreviewed
CVE-2024-36475 was published Jul 17, 2024
Leftover debug code exists in the boa formSysCmd functionality of LevelOne WBR-6013... High Unreviewed
CVE-2023-49593 was published Jul 8, 2024
Artifex Ghostscript before 10.03.1, when Tesseract is used for OCR, has a directory traversal... High Unreviewed
CVE-2024-29511 was published Jul 3, 2024
A leftover debug code vulnerability exists in the cli_server debug functionality of Tp-Link... High Unreviewed
CVE-2024-21827 was published Jun 25, 2024
Hard-coded credentials for the CyberPower PowerPanel test server can be found in the production... Critical Unreviewed
CVE-2024-32047 was published May 15, 2024
Active debug code vulnerability exists in RoamWiFi R10 prior to 4.8.45. If this vulnerability is... High Unreviewed
CVE-2024-31406 was published Apr 24, 2024
Active debug code vulnerability exists in MZK-MF300N all firmware versions. If a logged-in user... Moderate Unreviewed
CVE-2024-30219 was published Apr 15, 2024
Active Debug Code in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3,... Critical Unreviewed
CVE-2024-28008 was published Mar 28, 2024
An unauthorized user could access debug features in Quantum HD Unity products that were... Critical Unreviewed
CVE-2023-4804 was published Nov 11, 2023
A leftover debug code vulnerability exists in the httpd debug credentials functionality of Yifan... Critical Unreviewed
CVE-2023-32645 was published Oct 11, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database