GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,000
Erlang
29
GitHub Actions
16
Go
1,785
Maven
5,000+
npm
3,547
NuGet
621
pip
3,139
Pub
10
RubyGems
839
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
87,895 advisories
Filter by severity
A stored XSS issue was discovered in Archer Platform 6.8 before 2024.06. A remote authenticated...
High
Unreviewed
CVE-2024-41705
was published
Jul 25, 2024
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix may_goto with...
High
Unreviewed
CVE-2024-42072
was published
Jul 29, 2024
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an...
High
Unreviewed
CVE-2024-41915
was published
Jul 30, 2024
Langflow versions prior to 1.0.13 suffer from a Privilege Escalation vulnerability, allowing a...
High
Unreviewed
CVE-2024-7297
was published
Jul 30, 2024
Unprotected Transport of Credentials vulnerability in OpenText™ Documentum™ Server could allow...
High
Unreviewed
CVE-2024-4188
was published
Jul 30, 2024
Improper Neutralization of Input During Web Page Generation vulnerability in Stackposts Social...
High
Unreviewed
CVE-2024-7127
was published
Jul 30, 2024
Priority
PRI WEB Portal Add-On for Priority ERP on prem
- CWE-200: Exposure of Sensitive...
High
Unreviewed
CVE-2024-41696
was published
Jul 30, 2024
Cybonet - CWE-22: Improper Limitation of a Pathname to a Restricted Directory
High
Unreviewed
CVE-2024-41695
was published
Jul 30, 2024
Matrix Tafnit v8
- CWE-552: Files or Directories Accessible to External Parties
High
Unreviewed
CVE-2024-38429
was published
Jul 30, 2024
A signal handler race condition was found in OpenSSH's server (sshd), where a client does not...
High
Unreviewed
CVE-2024-6387
was published
Jul 1, 2024
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. A...
High
Unreviewed
CVE-2019-20463
was published
May 24, 2022
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. It...
High
Unreviewed
CVE-2019-20465
was published
May 24, 2022
An issue was discovered on TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. It performs...
High
Unreviewed
CVE-2019-20470
was published
May 24, 2022
An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Authentication to the...
High
Unreviewed
CVE-2020-11925
was published
May 24, 2022
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. By...
High
Unreviewed
CVE-2019-20464
was published
May 24, 2022
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. A...
High
Unreviewed
CVE-2019-20466
was published
May 24, 2022
An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may...
High
Unreviewed
CVE-2023-6277
was published
Nov 24, 2023
Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to...
High
Unreviewed
CVE-2024-4558
was published
May 7, 2024
A vulnerability, which was classified as critical, has been found in TOTOLINK A7000R 9.1.0u...
High
Unreviewed
CVE-2024-7212
was published
Jul 30, 2024
A vulnerability, which was classified as critical, was found in TOTOLINK A7000R 9.1.0u...
High
Unreviewed
CVE-2024-7213
was published
Jul 30, 2024
A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted...
High
Unreviewed
CVE-2023-52356
was published
Jan 25, 2024
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.5 and iPadOS...
High
Unreviewed
CVE-2024-27804
was published
May 14, 2024
HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to...
High
Unreviewed
CVE-2024-27316
was published
Apr 4, 2024
When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of...
High
Unreviewed
CVE-2024-2398
was published
Mar 27, 2024
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 17.4...
High
Unreviewed
CVE-2024-23296
was published
Mar 5, 2024
ProTip!
Advisories are also available from the
GraphQL API