Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

67 advisories

Loading
Exposed Dangerous Method or Function vulnerability in Drupal Swift Mailer allows Resource... Critical Unreviewed
CVE-2024-13242 was published Jan 9, 2025
Orchid Platform has Method Exposure Vulnerability in Modals Moderate
CVE-2024-51992 was published for orchid/platform (Composer) Nov 12, 2024
catferq
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-37365 was published Mar 29, 2023
PaperCut NG print.script.sandboxed Exposed Dangerous Function Remote Code Execution Vulnerability... High Unreviewed
CVE-2023-39470 was published Nov 22, 2024
Default installation of `synthetic-monitoring-agent` exposes sensitive information Moderate
CVE-2022-46156 was published for github.com/grafana/synthetic-monitoring-agent (Go) Sep 6, 2024
iamwillbar
Sharp and Toshiba Tec MFPs provide configuration related APIs. They are expected to be called by... High Unreviewed
CVE-2024-47005 was published Oct 25, 2024
The lack of access restriction to a resource from unauthorized users makes MXsecurity software... Moderate Unreviewed
CVE-2024-4739 was published Oct 18, 2024
Duplicate Advisory: Improper JWT Signature Validation in SAP Security Services Library Critical
GHSA-gcgw-q47m-prvj was published for com.sap.cloud.security.xsuaa:spring-xsuaa (Maven) Dec 12, 2023 withdrawn
Duplicate Advisory: Privilege escalation in sap/cloud-security-client-go Critical
GHSA-92cg-ghq6-9587 was published for github.com/sap/cloud-security-client-go (Go) Dec 12, 2023 withdrawn
Duplicate Advisory: Privilege escalation in sap-xssec Critical
GHSA-p99h-pfg6-qrfg was published for sap-xssec (pip) Dec 12, 2023 withdrawn
Escalation of privileges in @sap/xssec Critical
CVE-2023-49583 was published for @sap/xssec (npm) Dec 12, 2023
leon-vg
Exposure of sensitive information in Zoom Client SDK's before 5.15.5 may allow an authenticated... High Unreviewed
CVE-2023-39214 was published Aug 9, 2023
LangChain Experimental vulnerable to arbitrary code execution Critical
CVE-2024-27444 was published for langchain-experimental (pip) Feb 26, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... High Unreviewed
CVE-2024-35209 was published Jun 11, 2024
Local Privilege Escalation in MSI-Installer in baramundi Management Agent v23.1.172.0 on Windows... High Unreviewed
CVE-2024-6689 was published Jul 15, 2024
parisneo/lollms-webui is vulnerable to path traversal and denial of service attacks due to an... High Unreviewed
CVE-2024-1873 was published Jun 6, 2024
Voltronic Power ViewPower USBCommEx shutdown Exposed Dangerous Method Remote Code Execution... High Unreviewed
CVE-2023-51584 was published May 3, 2024
D-Link D-View coreservice_action_script Exposed Dangerous Function Remote Code Execution... Critical Unreviewed
CVE-2023-44414 was published May 3, 2024
Voltronic Power ViewPower setShutdown Exposed Dangerous Method Local Privilege Escalation... High Unreviewed
CVE-2023-51577 was published May 3, 2024
Voltronic Power ViewPower updateManagerPassword Exposed Dangerous Method Authentication Bypass... Critical Unreviewed
CVE-2023-51574 was published May 3, 2024
Voltronic Power ViewPower LinuxMonitorConsole Exposed Dangerous Method Remote Code Execution... Critical Unreviewed
CVE-2023-51582 was published May 3, 2024
Voltronic Power ViewPower UpsScheduler Exposed Dangerous Method Remote Code Execution... Critical Unreviewed
CVE-2023-51583 was published May 3, 2024
LG Simple Editor copyContent Exposed Dangerous Function Remote Code Execution Vulnerability. This... Critical Unreviewed
CVE-2023-40500 was published May 3, 2024
Visualware MyConnection Server doRTAAccessUPass Exposed Dangerous Method Information Disclosure... High Unreviewed
CVE-2023-42032 was published May 3, 2024
LG Simple Editor copyContent Exposed Dangerous Function Remote Code Execution Vulnerability. This... Critical Unreviewed
CVE-2023-40501 was published May 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database