GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,000
Erlang
29
GitHub Actions
16
Go
1,785
Maven
5,000+
npm
3,547
NuGet
621
pip
3,139
Pub
10
RubyGems
839
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
87,895 advisories
Filter by severity
A vulnerability classified as critical has been found in TOTOLINK A3600R 4.1.2cu.5182_B20201102....
High
Unreviewed
CVE-2024-7180
was published
Jul 29, 2024
A vulnerability was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102. It has been classified as...
High
Unreviewed
CVE-2024-7177
was published
Jul 29, 2024
A vulnerability was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102 and classified as critical....
High
Unreviewed
CVE-2024-7176
was published
Jul 29, 2024
A vulnerability was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102. It has been declared as...
High
Unreviewed
CVE-2024-7178
was published
Jul 29, 2024
A vulnerability, which was classified as critical, was found in TOTOLINK A3600R 4.1.2cu...
High
Unreviewed
CVE-2024-7174
was published
Jul 29, 2024
A vulnerability classified as critical was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102....
High
Unreviewed
CVE-2024-7172
was published
Jul 29, 2024
A vulnerability, which was classified as critical, has been found in TOTOLINK A3600R 4.1.2cu...
High
Unreviewed
CVE-2024-7173
was published
Jul 29, 2024
OpenSSH 9.5 through 9.7 before 9.8 sometimes allows timing attacks against echo-off password...
High
Unreviewed
CVE-2024-39894
was published
Jul 2, 2024
A vulnerability was found in TOTOLINK A3100R 4.1.2cu.5050_B20200504. It has been classified as...
High
Unreviewed
CVE-2024-7157
was published
Jul 28, 2024
The MSI installer for Splashtop Streamer for Windows before 3.5.8.0 uses a temporary folder with...
High
Unreviewed
CVE-2024-42052
was published
Jul 28, 2024
The MSI installer for Splashtop Streamer for Windows before 3.6.0.0 uses a temporary folder with...
High
Unreviewed
CVE-2024-42053
was published
Jul 28, 2024
The MSI installer for Splashtop Streamer for Windows before 3.7.0.0 uses a temporary folder with...
High
Unreviewed
CVE-2024-42050
was published
Jul 28, 2024
The MSI installer for Splashtop Streamer for Windows before 3.6.2.0 uses a temporary folder with...
High
Unreviewed
CVE-2024-42051
was published
Jul 28, 2024
A vulnerability was found in Tenda O3 1.0.0.10(2478). It has been rated as critical. This issue...
High
Unreviewed
CVE-2024-7152
was published
Jul 27, 2024
A vulnerability was found in Tenda O3 1.0.0.10(2478). It has been declared as critical. This...
High
Unreviewed
CVE-2024-7151
was published
Jul 27, 2024
The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-6431
was published
Jul 27, 2024
The Flipbox Builder plugin for WordPress is vulnerable to PHP Object Injection in all versions up...
High
Unreviewed
CVE-2024-6152
was published
Jul 27, 2024
Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote...
High
Unreviewed
CVE-2024-0519
was published
Jan 17, 2024
Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to...
High
Unreviewed
CVE-2021-21193
was published
May 24, 2022
Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an...
High
Unreviewed
CVE-2020-29583
was published
May 24, 2022
Microsoft Exchange Server Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2021-31207
was published
May 24, 2022
Out of bounds write in V8 in Google Chrome prior to 93.0.4577.82 allowed a remote attacker to...
High
Unreviewed
CVE-2021-30632
was published
May 24, 2022
Use after free in V8 in Google Chrome prior to 94.0.4606.71 allowed a remote attacker to...
High
Unreviewed
CVE-2021-37975
was published
May 24, 2022
A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker...
High
Unreviewed
CVE-2021-41773
was published
May 24, 2022
The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to...
High
Unreviewed
CVE-2020-25213
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API