GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,678
NuGet
645
pip
3,297
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,761 advisories
Filter by severity
Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with...
High
Unreviewed
CVE-2024-29821
was published
Oct 19, 2024
Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with...
High
Unreviewed
CVE-2024-29213
was published
Oct 19, 2024
By holding a reference to the eval() function from an about:blank window, a malicious webpage...
Moderate
Unreviewed
CVE-2020-15664
was published
May 24, 2022
An authentication bypass vulnerability exists in the web component of the Motorola MR2600. An...
Critical
Unreviewed
CVE-2024-23629
was published
Jan 26, 2024
An improper authorization vulnerability exists in the mintplex-labs/anything-llm application,...
Critical
Unreviewed
CVE-2024-3033
was published
Jun 6, 2024
Affected versions of Atlassian Jira Server and Data Center allow an unauthenticated user to...
Moderate
Unreviewed
CVE-2020-36289
was published
May 24, 2022
Improper access control in the Intel(R) CSME software installer before version 2239.3.7.0 may...
High
Unreviewed
CVE-2022-29871
was published
Aug 11, 2023
A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a...
Moderate
Unreviewed
CVE-2024-8691
was published
Sep 11, 2024
Improper access control in firmware for some Intel(R) PROSet/Wireless WiFi software for Windows...
Moderate
Unreviewed
CVE-2023-28714
was published
Aug 11, 2023
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
High
Unreviewed
CVE-2024-21260
was published
Oct 15, 2024
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/ODBC). ...
Moderate
Unreviewed
CVE-2024-21262
was published
Oct 15, 2024
Vulnerability in the Oracle Field Service product of Oracle E-Business Suite (component: Field...
High
Unreviewed
CVE-2024-21271
was published
Oct 15, 2024
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ...
High
Unreviewed
CVE-2024-21259
was published
Oct 15, 2024
Information disclosure while sending implicit broadcast containing APP launch information.
Moderate
Unreviewed
CVE-2024-38425
was published
Oct 7, 2024
Vulnerability in the Oracle Site Hub product of Oracle E-Business Suite (component: Site...
High
Unreviewed
CVE-2024-21265
was published
Oct 15, 2024
Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price...
High
Unreviewed
CVE-2024-21266
was published
Oct 15, 2024
Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite ...
High
Unreviewed
CVE-2024-21270
was published
Oct 15, 2024
Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost...
High
Unreviewed
CVE-2024-21267
was published
Oct 15, 2024
Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21268
was published
Oct 15, 2024
Vulnerability in the Oracle Quoting product of Oracle E-Business Suite (component: User Interface...
High
Unreviewed
CVE-2024-21275
was published
Oct 15, 2024
Vulnerability in the Oracle Incentive Compensation product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21269
was published
Oct 15, 2024
Vulnerability in the Oracle Work in Process product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21276
was published
Oct 15, 2024
Vulnerability in the Oracle Contract Lifecycle Management for Public Sector product of Oracle E...
High
Unreviewed
CVE-2024-21278
was published
Oct 15, 2024
Vulnerability in the Oracle Service Contracts product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21280
was published
Oct 15, 2024
Vulnerability in the Oracle MES for Process Manufacturing product of Oracle E-Business Suite ...
High
Unreviewed
CVE-2024-21277
was published
Oct 15, 2024
ProTip!
Advisories are also available from the
GraphQL API