GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,978
Composer 4,286
Erlang 31
GitHub Actions 21
Go 2,058
Maven 5,239
npm 3,742
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,425

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,068 advisories

Filter by severity

Sort by

Least recently updated

Microsoft Office Information Disclosure Vulnerability. Low Unreviewed

CVE-2022-41043 was published Oct 12, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37988,... Low Unreviewed

CVE-2022-38022 was published Oct 12, 2022

Stored cross-site scripting (XSS) vulnerability due to missing origin validation in postMessage.... Low Unreviewed

CVE-2024-55541 was published Jan 2, 2025

iXsystems TrueNAS CORE fetch_plugin_packagesites tar Cleartext Transmission of Sensitive... Low Unreviewed

CVE-2024-11946 was published Dec 30, 2024

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common... Low Unreviewed

CVE-2020-1823 was published Dec 28, 2024

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common... Low Unreviewed

CVE-2020-1824 was published Dec 28, 2024

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common... Low Unreviewed

CVE-2020-1822 was published Dec 28, 2024

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common... Low Unreviewed

CVE-2020-1820 was published Dec 28, 2024

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common... Low Unreviewed

CVE-2020-1821 was published Dec 28, 2024

Some Honor products are affected by incorrect privilege assignment vulnerability, successful... Low Unreviewed

CVE-2024-47157 was published Dec 26, 2024

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common... Low Unreviewed

CVE-2020-1818 was published Dec 27, 2024

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common... Low Unreviewed

CVE-2020-1819 was published Dec 27, 2024

There is an information vulnerability in Huawei smartphones. A function in a module can be called... Low Unreviewed

CVE-2020-9089 was published Dec 27, 2024

There is an improper authorization vulnerability in some Huawei smartphones. An attacker could... Low Unreviewed

CVE-2020-9081 was published Dec 27, 2024

There is an information disclosure vulnerability in several smartphones. The system has a logic... Low Unreviewed

CVE-2020-9082 was published Dec 27, 2024

Some Honor products are affected by incorrect privilege assignment vulnerability, successful... Low Unreviewed

CVE-2024-47149 was published Dec 26, 2024

Some Honor products are affected by information leak vulnerability, successful exploitation could... Low Unreviewed

CVE-2024-47150 was published Dec 26, 2024

Some Honor products are affected by information leak vulnerability, successful exploitation could... Low Unreviewed

CVE-2024-47156 was published Dec 26, 2024

shadow-utils (aka shadow) 4.4 through 4.17.0 establishes a default /etc/subuid behavior (e.g.,... Low Unreviewed

CVE-2024-56433 was published Dec 26, 2024

An issue was discovered in GitLab CE/EE affecting all versions before 17.6.0 in which users were... Low Unreviewed

CVE-2023-5117 was published Dec 25, 2024

Weak algorithm used to sign RPM package. The following products are affected: Acronis Cyber... Low Unreviewed

CVE-2024-55539 was published Dec 23, 2024

There is an insufficient authentication vulnerability in some Huawei smart phone. An... Low Unreviewed

CVE-2020-9250 was published Dec 20, 2024

Path Traversal and Insecure Direct Object Reference (IDOR) vulnerabilities in the eSignaViewer... Low Unreviewed

CVE-2024-12014 was published Dec 20, 2024

A reflected cross-site scripting (XSS) vulnerability in the 'Entry Chooser' of phpLDAPadmin ... Low Unreviewed

CVE-2024-9101 was published Dec 19, 2024

A cross-site scripting (XSS) vulnerability in the Web Reports component of HCL BigFix Platform... Low Unreviewed

CVE-2023-37530 was published Feb 29, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,068 advisories