GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,080
Erlang
29
GitHub Actions
19
Go
1,907
Maven
5,000+
npm
3,641
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,775 advisories
Filter by severity
The goTenna pro series does not encrypt the callsigns of its users. These callsigns reveal...
Low
Unreviewed
CVE-2024-47124
was published
Sep 26, 2024
The goTenna Pro ATAK Plugin does not encrypt the callsigns of its users.
These callsigns reveal...
Low
Unreviewed
CVE-2024-45838
was published
Sep 26, 2024
A vulnerability, which was classified as problematic, has been found in Enpass Password Manager...
Low
Unreviewed
CVE-2024-9203
was published
Sep 26, 2024
A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted...
Low
Unreviewed
CVE-2024-8443
was published
Sep 10, 2024
Mattermost versions 9.5.x <= 9.5.8 fail to include the metadata endpoints of Oracle Cloud and...
Low
Unreviewed
CVE-2024-45843
was published
Sep 26, 2024
Mattermost versions 9.11.x <= 9.11.0 and 9.5.x <= 9.5.8 fail to validate that the message of the...
Low
Unreviewed
CVE-2024-47003
was published
Sep 26, 2024
Mattermost versions 9.5.x <= 9.5.8 fail to properly authorize access to archived channels when...
Low
Unreviewed
CVE-2024-47145
was published
Sep 26, 2024
This vulnerability potentially allows files on a PaperCut NG/MF server to be exposed using a...
Low
Unreviewed
CVE-2024-1221
was published
Mar 14, 2024
A privacy issue was addressed by moving sensitive data to a protected location. This issue is...
Low
Unreviewed
CVE-2024-40838
was published
Sep 17, 2024
A vulnerability has been found in GPAC 2.5-DEV-rev228-g11067ea92-master and classified as...
Low
Unreviewed
CVE-2024-6061
was published
Jun 17, 2024
A vulnerability was found in GPAC 2.5-DEV-rev228-g11067ea92-master. It has been classified as...
Low
Unreviewed
CVE-2024-6063
was published
Jun 17, 2024
A vulnerability was found in GPAC 2.5-DEV-rev228-g11067ea92-master and classified as problematic....
Low
Unreviewed
CVE-2024-6062
was published
Jun 17, 2024
BTS is affected by information disclosure vulnerability where mobile network operator personnel...
Low
Unreviewed
CVE-2023-25189
was published
Sep 25, 2024
A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an authenticated attacker...
Low
Unreviewed
CVE-2023-0969
was published
Jun 21, 2023
The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to user group add due to a...
Low
Unreviewed
CVE-2024-8350
was published
Sep 25, 2024
The W3 Total Cache plugin for WordPress is vulnerable to Sensitive Information Exposure in...
Low
Unreviewed
CVE-2023-5359
was published
Sep 25, 2024
IBM Aspera Console 3.4.0 through 3.4.4 could allow a remote attacker to obtain sensitive...
Low
Unreviewed
CVE-2022-43845
was published
Sep 25, 2024
Buffer overflow in Platform CLI component in Silicon Labs Gecko SDK v4.2.1 and earlier allows...
Low
Unreviewed
CVE-2023-2687
was published
Jun 2, 2023
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An...
Low
Unreviewed
CVE-2024-44180
was published
Sep 17, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An...
Low
Unreviewed
CVE-2024-44139
was published
Sep 17, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2024-40791
was published
Sep 17, 2024
A vulnerability, which was classified as problematic, has been found in Ingenico Estate Manager...
Low
Unreviewed
CVE-2024-6059
was published
Jun 17, 2024
This issue was addressed with improved data protection. This issue is fixed in iOS 18 and iPadOS...
Low
Unreviewed
CVE-2024-40830
was published
Sep 17, 2024
A vulnerability was found in nasirkhan Laravel Starter up to 11.8.0. It has been rated as...
Low
Unreviewed
CVE-2024-6056
was published
Jun 17, 2024
An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk®...
Low
Unreviewed
CVE-2024-6326
was published
Jul 16, 2024
ProTip!
Advisories are also available from the
GraphQL API