Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,000
Erlang
29
GitHub Actions
16
Go
1,785
Maven
5,000+
npm
3,547
NuGet
621
pip
3,139
Pub
10
RubyGems
839
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

87,895 advisories

Loading
A stored XSS issue was discovered in Archer Platform 6.8 before 2024.06. A remote authenticated... High Unreviewed
CVE-2024-41705 was published Jul 25, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix may_goto with... High Unreviewed
CVE-2024-42072 was published Jul 29, 2024
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an... High Unreviewed
CVE-2024-41915 was published Jul 30, 2024
Langflow versions prior to 1.0.13 suffer from a Privilege Escalation vulnerability, allowing a... High Unreviewed
CVE-2024-7297 was published Jul 30, 2024
Unprotected Transport of Credentials vulnerability in OpenText™ Documentum™ Server could allow... High Unreviewed
CVE-2024-4188 was published Jul 30, 2024
Improper Neutralization of Input During Web Page Generation vulnerability in Stackposts Social... High Unreviewed
CVE-2024-7127 was published Jul 30, 2024
Priority PRI WEB Portal Add-On for Priority ERP on prem - CWE-200: Exposure of Sensitive... High Unreviewed
CVE-2024-41696 was published Jul 30, 2024
Cybonet - CWE-22: Improper Limitation of a Pathname to a Restricted Directory High Unreviewed
CVE-2024-41695 was published Jul 30, 2024
Matrix Tafnit v8 -  CWE-552: Files or Directories Accessible to External Parties High Unreviewed
CVE-2024-38429 was published Jul 30, 2024
A signal handler race condition was found in OpenSSH's server (sshd), where a client does not... High Unreviewed
CVE-2024-6387 was published Jul 1, 2024
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. A... High Unreviewed
CVE-2019-20463 was published May 24, 2022
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. It... High Unreviewed
CVE-2019-20465 was published May 24, 2022
An issue was discovered on TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. It performs... High Unreviewed
CVE-2019-20470 was published May 24, 2022
An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Authentication to the... High Unreviewed
CVE-2020-11925 was published May 24, 2022
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. By... High Unreviewed
CVE-2019-20464 was published May 24, 2022
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. A... High Unreviewed
CVE-2019-20466 was published May 24, 2022
An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may... High Unreviewed
CVE-2023-6277 was published Nov 24, 2023
Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to... High Unreviewed
CVE-2024-4558 was published May 7, 2024
A vulnerability, which was classified as critical, has been found in TOTOLINK A7000R 9.1.0u... High Unreviewed
CVE-2024-7212 was published Jul 30, 2024
A vulnerability, which was classified as critical, was found in TOTOLINK A7000R 9.1.0u... High Unreviewed
CVE-2024-7213 was published Jul 30, 2024
A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted... High Unreviewed
CVE-2023-52356 was published Jan 25, 2024
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.5 and iPadOS... High Unreviewed
CVE-2024-27804 was published May 14, 2024
HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to... High Unreviewed
CVE-2024-27316 was published Apr 4, 2024
When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of... High Unreviewed
CVE-2024-2398 was published Mar 27, 2024
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 17.4... High Unreviewed
CVE-2024-23296 was published Mar 5, 2024
ProTip! Advisories are also available from the GraphQL API