GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
93,913 advisories
Filter by severity
IBM WebSphere Automation 1.7.5 could allow a remote privileged user, who has authorized access to...
High
Unreviewed
CVE-2024-54181
was published
Dec 30, 2024
Smadar SPS – CWE-327: Use of a Broken or Risky Cryptographic Algorithm
High
Unreviewed
CVE-2024-47921
was published
Dec 30, 2024
Tiki Wiki CMS – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site...
High
Unreviewed
CVE-2024-47920
was published
Dec 30, 2024
The ZENIC ONE R58 products by ZTE Corporation have a command injection vulnerability. An...
High
Unreviewed
CVE-2024-22063
was published
Dec 30, 2024
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
High
Unreviewed
CVE-2024-47917
was published
Dec 30, 2024
Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation (...
High
Unreviewed
CVE-2024-47925
was published
Dec 30, 2024
Boa web server – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site...
High
Unreviewed
CVE-2024-47924
was published
Dec 30, 2024
Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
High
Unreviewed
CVE-2024-47922
was published
Dec 30, 2024
Some Huawei wearables have a permission management vulnerability.
High
Unreviewed
CVE-2021-37000
was published
Dec 28, 2024
Some Huawei home routers have a connection hijacking vulnerability. Successful exploitation of...
High
Unreviewed
CVE-2023-7266
was published
Dec 28, 2024
Some Huawei home music system products have a path traversal vulnerability. Successful...
High
Unreviewed
CVE-2023-7263
was published
Dec 28, 2024
Some Huawei wearables have a vulnerability of not verifying the actual data size when reading...
High
Unreviewed
CVE-2021-22484
was published
Dec 28, 2024
Software installed and run as a non-privileged user may conduct improper GPU system calls to...
High
Unreviewed
CVE-2024-46973
was published
Dec 28, 2024
Software installed and run as a non-privileged user can trigger the GPU kernel driver to write to...
High
Unreviewed
CVE-2024-43705
was published
Dec 28, 2024
A Server-Side Request Forgery (SSRF) in smarts-srl.com Smart Agent v.1.1.0 allows a remote...
High
Unreviewed
CVE-2024-50714
was published
Dec 28, 2024
An issue in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive...
High
Unreviewed
CVE-2024-50715
was published
Dec 27, 2024
An improper access control vulnerability exists in SimplCommerce at commit...
High
Unreviewed
CVE-2024-50945
was published
Dec 27, 2024
The Four-Faith router models F3x24 and F3x36 are affected by an operating system (OS) command...
High
Unreviewed
CVE-2024-12856
was published
Dec 27, 2024
There is an improper privilege management vulnerability in Huawei smart phone product. A local,...
High
Unreviewed
CVE-2020-9080
was published
Dec 27, 2024
There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to...
High
Unreviewed
CVE-2020-9222
was published
Dec 27, 2024
There is an improper interface design vulnerability in Huawei product. A module interface of the...
High
Unreviewed
CVE-2020-9236
was published
Dec 27, 2024
A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS...
High
Unreviewed
CVE-2024-3393
was published
Dec 27, 2024
TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Remote Code Execution in /bin/boa via...
High
Unreviewed
CVE-2024-54907
was published
Dec 26, 2024
Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in...
High
Unreviewed
CVE-2024-51540
was published
Dec 26, 2024
Huawei Home Music System has a path traversal vulnerability. Successful exploitation of this...
High
Unreviewed
CVE-2023-7300
was published
Dec 26, 2024
ProTip!
Advisories are also available from the
GraphQL API