GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,523

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,069 advisories

Filter by severity

Sort by

Least recently updated

In JetBrains Hub before 2024.2.34646 stored XSS via project description was possible Low Unreviewed

CVE-2024-38507 was published Jun 18, 2024

Redmi router RB03 v1.0.57 is vulnerable to TCP DoS or hijacking attacks. An attacker in the same... Low Unreviewed

CVE-2024-37664 was published Jun 17, 2024

Redmi router RB03 v1.0.57 is vulnerable to forged ICMP redirect message attacks. An attacker in... Low Unreviewed

CVE-2024-37663 was published Jun 17, 2024

IBM Db2 for i 7.2, 7.3, 7.4, and 7.5 supplies user defined table function is vulnerable to user... Low Unreviewed

CVE-2024-31870 was published Jun 15, 2024

HCL DRYiCE Optibot Reset Station is impacted by a missing Strict Transport Security Header. This... Low Unreviewed

CVE-2024-30119 was published Jun 15, 2024

HCL DRYiCE Optibot Reset Station is impacted by an Unused Parameter in the web application. Low Unreviewed

CVE-2024-30120 was published Jun 15, 2024

DoS in KAS in GitLab CE/EE affecting all versions from 16.10.0 prior to 16.10.6 and 16.11.0 prior... Low Unreviewed

CVE-2024-5469 was published Jun 14, 2024

The Easy WP SMTP by SendLayer – WordPress SMTP and Email Log Plugin plugin for WordPress is... Low Unreviewed

CVE-2024-3073 was published Jun 13, 2024

Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation... Low Unreviewed

CVE-2024-36226 was published Jun 13, 2024

Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation... Low Unreviewed

CVE-2024-26126 was published Jun 13, 2024

Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation... Low Unreviewed

CVE-2024-26127 was published Jun 13, 2024

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows... Low Unreviewed

CVE-2024-5905 was published Jun 12, 2024

A stored cross site scripting vulnerability exists in Tenable Security Center where an... Low Unreviewed

CVE-2024-1891 was published Jun 12, 2024

A Cross-site request forgery (CSRF) flaw was found in Keycloak and occurs due to the lack of a... Low Unreviewed

CVE-2024-5203 was published Jun 12, 2024

A vulnerability exists in the FOXMAN-UN/UNEM in which sensitive information is stored in... Low Unreviewed

CVE-2024-28024 was published Jun 11, 2024

A low severity vulnerability in BIPS has been identified where an attacker with high privileges... Low Unreviewed

CVE-2024-5812 was published Jun 11, 2024

A use of password hash with insufficient computational effort vulnerability [CWE-916] affecting... Low Unreviewed

CVE-2024-21754 was published Jun 11, 2024

A vulnerability has been identified in TIA Administrator (All versions < V3 SP2). The affected... Low Unreviewed

CVE-2023-38533 was published Jun 11, 2024

On Unix, SAP BusinessObjects Business Intelligence Platform (Scheduling) allows an authenticated... Low Unreviewed

CVE-2024-34684 was published Jun 11, 2024

A privacy issue was addressed with improved handling of temporary files. This issue is fixed in... Low Unreviewed

CVE-2024-27845 was published Jun 10, 2024

This issue was addressed through improved state management. This issue is fixed in watchOS 10.5.... Low Unreviewed

CVE-2024-27814 was published Jun 10, 2024

The issue was addressed by restricting options offered on a locked device. This issue is fixed in... Low Unreviewed

CVE-2024-27819 was published Jun 10, 2024

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma... Low Unreviewed

CVE-2024-27799 was published Jun 10, 2024

Authentication Bypass by Spoofing vulnerability in Acurax Under Construction / Maintenance Mode... Low Unreviewed

CVE-2024-35749 was published Jun 10, 2024

Missing Authorization vulnerability in weForms.This issue affects weForms: from n/a through 1.6.20. Low Unreviewed

CVE-2024-30512 was published Jun 9, 2024

Previous 1 2 … 18 19 20 21 22 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,069 advisories