GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
32 advisories
Filter by severity
Multiple SHARP routers leave the hidden debug function enabled. An arbitrary OS command may be...
Critical
Unreviewed
CVE-2024-46873
was published
Dec 23, 2024
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated,...
High
Unreviewed
CVE-2022-20649
was published
Nov 15, 2024
Active debug code vulnerability exists in Mesh Wi-Fi router RP562B firmware version v1.0.2 and...
Moderate
Unreviewed
CVE-2024-29075
was published
Nov 12, 2024
Smart-tab Android app installed April 2023 or earlier contains an active debug code vulnerability...
Moderate
Unreviewed
CVE-2024-41999
was published
Sep 30, 2024
In TBD of TBD, there is a possible LCS signing enforcement missing due to test/debugging code...
High
Unreviewed
CVE-2024-44092
was published
Sep 13, 2024
A potential vulnerability was reported in the ThinkPad L390 Yoga and 10w Notebook that could...
Moderate
Unreviewed
CVE-2024-7756
was published
Sep 13, 2024
Default installation of `synthetic-monitoring-agent` exposes sensitive information
Moderate
CVE-2022-46156
was published
for
github.com/grafana/synthetic-monitoring-agent
(Go)
Sep 6, 2024
FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. contain an...
High
Unreviewed
CVE-2024-36475
was published
Jul 17, 2024
Leftover debug code exists in the boa formSysCmd functionality of LevelOne WBR-6013...
High
Unreviewed
CVE-2023-49593
was published
Jul 8, 2024
Artifex Ghostscript before 10.03.1, when Tesseract is used for OCR, has a directory traversal...
High
Unreviewed
CVE-2024-29511
was published
Jul 3, 2024
A leftover debug code vulnerability exists in the cli_server debug functionality of Tp-Link...
High
Unreviewed
CVE-2024-21827
was published
Jun 25, 2024
Hard-coded credentials for the
CyberPower PowerPanel test server can be found in the
production...
Critical
Unreviewed
CVE-2024-32047
was published
May 15, 2024
Active debug code vulnerability exists in RoamWiFi R10 prior to 4.8.45. If this vulnerability is...
High
Unreviewed
CVE-2024-31406
was published
Apr 24, 2024
Active Debug Code in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3,...
Critical
Unreviewed
CVE-2024-28008
was published
Mar 28, 2024
An unauthorized user could access debug features in Quantum HD Unity products that were...
Critical
Unreviewed
CVE-2023-4804
was published
Nov 11, 2023
A stack-based buffer overflow vulnerability exists in the httpd gwcfg.cgi get functionality of...
Critical
Unreviewed
CVE-2023-34346
was published
Oct 11, 2023
A leftover debug code vulnerability exists in the httpd debug credentials functionality of Yifan...
Critical
Unreviewed
CVE-2023-32645
was published
Oct 11, 2023
A vulnerability has been identified in the ioLogik 4000 Series (ioLogik E4200) firmware versions...
Moderate
Unreviewed
CVE-2023-4227
was published
Aug 24, 2023
A debug feature in Sensormatic Electronics Illustra Pro Gen 4 Dome and PTZ cameras allows a user...
Critical
Unreviewed
CVE-2023-0954
was published
Jun 8, 2023
Active Debug Code vulnerability in Mitsubishi Electric Corporation MELSEC WS Series WS0-GETH00200...
High
Unreviewed
CVE-2023-1618
was published
May 19, 2023
Active Debug Code vulnerability in ActivityManagerService prior to SMR May-2023 Release 1 allows...
Moderate
Unreviewed
CVE-2023-21496
was published
May 4, 2023
Active Debug Code vulnerability in robot controller of Mitsubishi Electric Corporation industrial...
High
Unreviewed
CVE-2022-33323
was published
Feb 2, 2023
A leftover debug code vulnerability exists in the console nvram functionality of InHand Networks...
Moderate
Unreviewed
CVE-2022-29481
was published
Nov 9, 2022
A leftover debug code vulnerability exists in the console support functionality of InHand...
High
Unreviewed
CVE-2022-28689
was published
Nov 9, 2022
A leftover debug code vulnerability exists in the httpd port 4444 upload.cgi functionality of...
High
Unreviewed
CVE-2022-29888
was published
Nov 9, 2022
ProTip!
Advisories are also available from the
GraphQL API