Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,170
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

163 advisories

Loading
The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for... High Unreviewed
CVE-2024-10028 was published Nov 6, 2024
Yealink Meeting Server before V26.0.0.67 is vulnerable to sensitive data exposure in the server... High Unreviewed
CVE-2024-48352 was published Nov 1, 2024
Yealink Meeting Server before V26.0.0.67 allows attackers to obtain static key information from a... High Unreviewed
CVE-2024-48353 was published Nov 1, 2024
Altai Technologies Ltd Altai IX500 Indoor 22 802.11ac Wave 2 AP After login, there are file reads... Moderate Unreviewed
CVE-2024-51399 was published Nov 1, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2024-44257 was published Oct 29, 2024
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44216 was published Oct 29, 2024
A logic issue was addressed with improved state management. This issue is fixed in iOS 18.1 and... Moderate Unreviewed
CVE-2024-44263 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Low Unreviewed
CVE-2024-44275 was published Oct 28, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44175 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An... Moderate Unreviewed
CVE-2024-44174 was published Oct 28, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed
CVE-2024-44222 was published Oct 28, 2024
An issue existed in the parsing of URLs. This issue was addressed with improved input validation.... Moderate Unreviewed
CVE-2024-44213 was published Oct 28, 2024
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed
CVE-2022-30359 was published Oct 25, 2024
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed
CVE-2022-30361 was published Oct 25, 2024
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker... Moderate Unreviewed
CVE-2024-10041 was published Oct 23, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform... Moderate Unreviewed
CVE-2024-20462 was published Oct 16, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Low Unreviewed
CVE-2024-21211 was published Oct 15, 2024
Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite (component: User... Moderate Unreviewed
CVE-2024-21258 was published Oct 15, 2024
An issue in Plug n Play Camera com.wisdomcity.zwave 1.1.0 allows a remote attacker to obtain... High Unreviewed
CVE-2024-48770 was published Oct 11, 2024
HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could... Low Unreviewed
CVE-2024-30132 was published Oct 1, 2024
In the goTenna Pro application, the encryption keys are stored along with a static IV on the... Moderate Unreviewed
CVE-2024-47122 was published Sep 26, 2024
In the goTenna Pro ATAK Plugin application, the encryption keys are stored along with a static... Moderate Unreviewed
CVE-2024-43694 was published Sep 26, 2024
In the goTenna Pro ATAK Plugin application, the encryption keys are stored along with a static... Moderate Unreviewed
CVE-2024-45374 was published Sep 26, 2024
An issue was discovered in wolfSSL before 5.7.0. A safe-error attack via Rowhammer, namely FAULT... Moderate Unreviewed
CVE-2024-5288 was published Aug 27, 2024
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker... Moderate Unreviewed
CVE-2024-42677 was published Aug 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database