GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
171 advisories
Filter by severity
IBM Jazz Foundation 7.0.2, 7.0.3, and 7.1.0 could
could allow a physical user to obtain...
Moderate
Unreviewed
CVE-2024-41780
was published
Jan 3, 2025
The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for...
Moderate
Unreviewed
CVE-2024-11712
was published
Dec 14, 2024
Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x contains a a feature that could...
High
Unreviewed
CVE-2024-42494
was published
Dec 6, 2024
IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 could allow an authenticated user to obtain...
Moderate
Unreviewed
CVE-2024-37070
was published
Nov 19, 2024
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-49025
was published
Nov 14, 2024
Unauthorized access vulnerability in the mobile application (com.transsion.phoenix) can lead to...
High
Unreviewed
CVE-2024-11206
was published
Nov 14, 2024
An exposure of sensitive information to an unauthorized actor [CWE-200] in Fortinet FortiManager...
Moderate
Unreviewed
CVE-2023-44255
was published
Nov 12, 2024
Sensitive information disclosure due to spell-jacking. The following products are affected:...
Moderate
Unreviewed
CVE-2024-49386
was published
Oct 17, 2024
This vulnerability exists in Apex Softcell LD Geo due to improper validation of the certain...
High
Unreviewed
CVE-2024-47087
was published
Sep 19, 2024
This vulnerability exists in LD DP Back Office due to improper validation of certain parameters ...
High
Unreviewed
CVE-2024-47085
was published
Sep 19, 2024
An attacker with no knowledge of the current users in the web application, could build a...
Moderate
Unreviewed
CVE-2024-8891
was published
Sep 18, 2024
org.xwiki.platform:xwiki-platform-notifications-ui leaks data of notification filters of users
Moderate
CVE-2024-46979
was published
for
org.xwiki.platform:xwiki-platform-notifications-ui
(Maven)
Sep 18, 2024
This vulnerability exists in Reedos aiM-Star version 2.0.1 due to transmission of sensitive...
High
Unreviewed
CVE-2024-45787
was published
Sep 11, 2024
XWiki Platform document history including authors of any page exposed to unauthorized actors
Moderate
CVE-2024-45591
was published
for
org.xwiki.platform:xwiki-platform-rest-server
(Maven)
Sep 10, 2024
Due to missing authorization checks, SAP Business Warehouse (BEx Analyzer) allows an...
Moderate
Unreviewed
CVE-2024-44113
was published
Sep 10, 2024
Due to missing authorization checks, SAP BEx Analyzer allows an authenticated attacker to access...
Moderate
Unreviewed
CVE-2024-41729
was published
Sep 10, 2024
Dell Path to PowerProtect, versions 1.1, 1.2, contains an Exposure of Private Personal...
Moderate
Unreviewed
CVE-2024-37136
was published
Sep 3, 2024
Improper access control in the clipboard synchronization feature in TeamViewer Full Client prior...
Moderate
Unreviewed
CVE-2024-6053
was published
Aug 28, 2024
Logical vulnerability in the mobile application (com.transsion.carlcare) may lead to user...
High
Unreviewed
CVE-2024-7697
was published
Aug 12, 2024
Matrix SDK for React's URL preview setting for a room is controllable by the homeserver
Moderate
CVE-2024-42347
was published
for
matrix-react-sdk
(npm)
Aug 6, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Moderate
Unreviewed
CVE-2024-40796
was published
Jul 30, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Moderate
Unreviewed
CVE-2024-27881
was published
Jul 30, 2024
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-38103
was published
Jul 26, 2024
IBM InfoSphere Information Server 11.7 could disclose sensitive user information to another user...
Low
Unreviewed
CVE-2024-37533
was published
Jul 24, 2024
A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions), SIMATIC WinCC Runtime...
High
Unreviewed
CVE-2024-30321
was published
Jul 9, 2024
ProTip!
Advisories are also available from the
GraphQL API