Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

964 advisories

Loading
An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup... High Unreviewed
CVE-2024-48950 was published Nov 7, 2024
The LSC Smart Connect Indoor IP Camera V7.6.32 is vulnerable to an information disclosure issue... Moderate Unreviewed
CVE-2024-51362 was published Nov 5, 2024
OctoPrint has API key access in settings without reauthentication Moderate
CVE-2024-51493 was published for OctoPrint (pip) Nov 5, 2024
jacopotediosi
The Get Quote For Woocommerce – Request A Quote For Woocommerce plugin for WordPress is... Moderate Unreviewed
CVE-2024-9430 was published Oct 31, 2024
upgrademysqlstatus in databases/views.py in CyberPanel (aka Cyber Panel) before 5b08cd6 allows... Critical Unreviewed
CVE-2024-51567 was published Oct 30, 2024
Authentication Bypass Using an Alternate Path or Channel vulnerability in Priyabrata Sarkar Token... High Unreviewed
CVE-2024-50488 was published Oct 28, 2024
Authentication Bypass Using an Alternate Path or Channel vulnerability in MaanTheme MaanStore API... Critical Unreviewed
CVE-2024-50487 was published Oct 28, 2024
Authentication Bypass Using an Alternate Path or Channel vulnerability in Realty Workstation... Critical Unreviewed
CVE-2024-50489 was published Oct 28, 2024
Authentication Bypass Using an Alternate Path or Channel vulnerability in Stacks Stacks Mobile... Critical Unreviewed
CVE-2024-50477 was published Oct 28, 2024
Authentication Bypass Using an Alternate Path or Channel vulnerability in Acnoo Acnoo Flutter API... Critical Unreviewed
CVE-2024-50486 was published Oct 28, 2024
CVE-2024-10386 IMPACT An authentication vulnerability exists in the affected product. The... Critical Unreviewed
CVE-2024-10386 was published Oct 25, 2024
Sharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an... Critical Unreviewed
CVE-2024-47406 was published Oct 25, 2024
Incorrect access control in Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA... Moderate Unreviewed
CVE-2024-48442 was published Oct 24, 2024
A missing authentication for critical function in FortiManager 7.6.0, FortiManager 7.4.0 through... Critical Unreviewed
CVE-2024-47575 was published Oct 23, 2024
A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2... Moderate Unreviewed
CVE-2024-47902 was published Oct 23, 2024
An issue in Casa Systems NTC-221 version 2.0.99.0 and before allows a remote attacker to execute... Critical Unreviewed
CVE-2024-26519 was published Oct 23, 2024
A Local Privilege Escalation issue was discovered in Y Soft SAFEQ 6 Build 53. The SafeQ JMX... High Unreviewed
CVE-2022-23862 was published Oct 22, 2024
The Rover IDX plugin for WordPress is vulnerable to Authentication Bypass in versions up to, and... High Unreviewed
CVE-2024-10002 was published Oct 22, 2024
Vilo 5 Mesh WiFi System <= 5.16.1.33 lacks authentication in the Boa webserver, which allows... Moderate Unreviewed
CVE-2024-40091 was published Oct 21, 2024
Vilo 5 Mesh WiFi System <= 5.16.1.33 is vulnerable to Insecure Permissions. Lack of... Critical Unreviewed
CVE-2024-40087 was published Oct 21, 2024
A vulnerability in the AWV (Audio, Web, and Video) Conferencing component of Mitel MiCollab... High Unreviewed
CVE-2024-47912 was published Oct 21, 2024
Authentication Bypass Using an Alternate Path or Channel vulnerability in Najeeb Ahmad Simple... Critical Unreviewed
CVE-2024-49604 was published Oct 20, 2024
Authentication Bypass Using an Alternate Path or Channel vulnerability in Vivek Tamrakar WP REST... Critical Unreviewed
CVE-2024-49328 was published Oct 20, 2024
The affected product is vulnerable to an attacker being able to use commands without providing a... High Unreviewed
CVE-2024-49399 was published Oct 17, 2024
Improper authentication vulnerability in Energy Management Controller with Cloud Services JH-RVB1... High Unreviewed
CVE-2024-23783 was published Oct 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database