GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,018
Composer 4,300
Erlang 31
GitHub Actions 21
Go 2,069
Maven 5,241
npm 3,744
NuGet 668
pip 3,429
Pub 12
RubyGems 892
Rust 880
Swift 36

Unreviewed advisories

All unreviewed 240,550

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,002 advisories

Filter by severity

Sort by

Least recently updated

COMFAST CF-WR630AX v2.7.0.2 was discovered to contain a hardcoded password vulnerability in /etc... Critical Unreviewed

CVE-2024-54751 was published Dec 10, 2024

WAVLINK WN531P3 202383 was discovered to contain a hardcoded password vulnerability in /etc... Critical Unreviewed

CVE-2024-54747 was published Dec 6, 2024

WAVLINK WN701AE M01AE_V240305 was discovered to contain a hardcoded password vulnerability in ... Critical Unreviewed

CVE-2024-54745 was published Dec 6, 2024

An issue in InfoDom Performa 365 v4.0.1 allows authenticated attackers to elevate their... High Unreviewed

CVE-2024-46624 was published Dec 4, 2024

An issue was discovered in the installer in Samsung Magician 8.1.0 on Windows. An attacker can... Low Unreviewed

CVE-2024-53921 was published Dec 3, 2024

In OSUInfo of OSUInfo.java, there is a possible escalation of privilege due to improper input... High Unreviewed

CVE-2018-9431 was published Dec 3, 2024

Ever Traduora 0.20.0 and below is vulnerable to Privilege Escalation due to the use of a hard... Critical Unreviewed

CVE-2024-53484 was published Dec 2, 2024

The NetCloud Exchange client for Windows, version 1.110.50, contains an insecure file and folder... High Unreviewed

CVE-2024-11969 was published Nov 28, 2024

OpenVidReview 1.0 is vulnerable to Incorrect Access Control. The /upload route is accessible... Critical Unreviewed

CVE-2024-46054 was published Nov 27, 2024

Zohocorp ManageEngine Analytics Plus versions below 6100 are vulnerable to authenticated... High Unreviewed

CVE-2024-52323 was published Nov 27, 2024

On Android, Firefox may have inadvertently allowed viewing saved passwords without the required... Critical Unreviewed

CVE-2024-11703 was published Nov 26, 2024

Gee-netics, member of the AXIS Camera Station Pro Bug Bounty Program has found that it is... Moderate Unreviewed

CVE-2024-6476 was published Nov 26, 2024

Incorrect access control in Meabilis CMS 1.0 allows attackers to access other users' address... Unknown Unreviewed

CVE-2024-44786 was published Nov 22, 2024

An issue in Owncloud android apk v.4.3.1 allows a physically proximate attacker to escalate... Moderate Unreviewed

CVE-2024-50657 was published Nov 22, 2024

A discrepancy between responses for valid and invalid e-mail accounts in the Forgot your Login?... Moderate Unreviewed

CVE-2024-48533 was published Nov 20, 2024

An issue in Audimex EE v.15.1.20 and before allows a remote attacker to escalate privileges. Critical Unreviewed

CVE-2024-51162 was published Nov 20, 2024

In createPhonebookDialogView and createMapDialogView of BluetoothPermissionActivity.java, there... High Unreviewed

CVE-2018-9432 was published Nov 20, 2024

In the getHost() function of UriTest.java, there is the possibility of incorrect web origin... Critical Unreviewed

CVE-2018-9467 was published Nov 20, 2024

In bootloader there is fastboot command allowing user specified kernel command line arguments.... High Unreviewed

CVE-2018-9369 was published Nov 19, 2024

In restorePermissionState of PermissionManagerServiceImpl.java, there is a possible way for an... High Unreviewed

CVE-2023-21270 was published Nov 19, 2024

AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account. Critical Unreviewed

CVE-2024-51051 was published Nov 19, 2024

Incorrect access control in QuickHeal Antivirus Pro 24.1.0.182 and earlier allows authenticated... Moderate Unreviewed

CVE-2024-48293 was published Nov 18, 2024

An issue in the wssrvc.exe service of QuickHeal Antivirus Pro Version v24.0 and Quick Heal Total... High Unreviewed

CVE-2024-48292 was published Nov 18, 2024

Delinea Privilege Manager before 12.0.2 mishandles the security of the Windows agent. High Unreviewed

CVE-2024-52926 was published Nov 18, 2024

guix-daemon in GNU Guix before 5ab3c4c allows privilege escalation because build outputs are... High Unreviewed

CVE-2024-52867 was published Nov 17, 2024

Previous 1 2 3 4 5 … 40 41 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,002 advisories