GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,512
Composer 4,830
Erlang 36
GitHub Actions 33
Go 2,449
Maven 5,848
npm 4,066
NuGet 723
pip 3,868
Pub 12
RubyGems 943
Rust 1,010
Swift 39

Unreviewed advisories

All unreviewed 266,194

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

83 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The goTenna Pro ATAK Plugin broadcast key name is always sent unencrypted and could reveal the... Moderate Unreviewed

CVE-2024-41931 was published Sep 26, 2024

An attacker with access to the network where the CIRCUTOR Q-SMT is located in its firmware... High Unreviewed

CVE-2024-8890 was published Sep 18, 2024

A “CWE-201: Insertion of Sensitive Information Into Sent Data” affecting the administrative... Moderate Unreviewed

CVE-2024-31200 was published Jul 31, 2024

When the device is shared, the homepage module are before 2.19.0 in eWeLink Cloud Service allows... Critical Unreviewed

CVE-2024-7205 was published Jul 31, 2024

SiteGuard WP Plugin provides a functionality to customize the path to the login page wp-login.php... Moderate Unreviewed

CVE-2024-37881 was published Jun 19, 2024

Audit records for OpenAPI requests may include sensitive information. This could lead to... High Unreviewed

CVE-2023-6916 was published Apr 10, 2024

In JetBrains TeamCity between 2023.11 and 2023.11.4 custom build parameters of the "password"... Moderate Unreviewed

CVE-2024-28173 was published Mar 6, 2024

The "tokenKey" value used in user authorization is visible in the HTML source of the login page. High Unreviewed

CVE-2023-49261 was published Jan 12, 2024

An information disclosure vulnerability exists in the challenge functionality of instipod... Moderate Unreviewed

CVE-2023-49594 was published Dec 23, 2023

An issue has been discovered in GitLab affecting all versions starting from 11.3 before 16.4.3,... Moderate Unreviewed

CVE-2023-3949 was published Dec 1, 2023

An issue has been discovered in GitLab EE affecting all versions starting from 11.6 before 16.3.6... Moderate Unreviewed

CVE-2023-3399 was published Nov 6, 2023

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.0 before 16... Low Unreviewed

CVE-2023-5831 was published Nov 6, 2023

An information disclosure vulnerability exists in the CtEnumCa() functionality of SoftEther VPN 4... Moderate Unreviewed

CVE-2023-32275 was published Oct 12, 2023

An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.8,... High Unreviewed

CVE-2023-3413 was published Sep 29, 2023

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16... Moderate Unreviewed

CVE-2023-4378 was published Sep 1, 2023

An issue has been discovered in GitLab EE affecting all versions starting from 14.1 before 16.0.8... Moderate Unreviewed

CVE-2023-4002 was published Aug 4, 2023

An issue has been discovered in GitLab DAST scanner affecting all versions starting from 3.0.29... Moderate Unreviewed

CVE-2023-1401 was published Jul 26, 2023

A sensitive information leak issue has been discovered in GitLab EE affecting all versions... Moderate Unreviewed

CVE-2023-3102 was published Jul 21, 2023

A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba... Moderate Unreviewed

CVE-2023-34968 was published Jul 20, 2023

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.1 prior to... Low Unreviewed

CVE-2023-2620 was published Jul 13, 2023

An issue has been discovered in GitLab EE affecting all versions starting from 15.7 before 15.10... Moderate Unreviewed

CVE-2023-1825 was published Jun 7, 2023

Some Dahua software products have a vulnerability of sensitive information leakage. After... Low Unreviewed

CVE-2022-45428 was published Dec 27, 2022

A vulnerability was found in the Linux kernel, where accessing a deallocated instance in... Moderate Unreviewed

CVE-2020-27784 was published Sep 2, 2022

libcurl wrongly allows cookies to be set for Top Level Domains (TLDs) if thehost name is provided... Moderate Unreviewed

CVE-2022-27779 was published Jun 3, 2022

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling... Moderate Unreviewed

CVE-2020-27748 was published May 24, 2022

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

83 advisories