GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,364 advisories
Filter by severity
In Janitza GridVis through 9.0.66, use of hard-coded credentials in the de.janitza.pasw.feature...
High
Unreviewed
CVE-2023-50894
was published
Mar 26, 2024
Information exposure vulnerability in the CIGESv2 system. A remote attacker might be able to...
High
Unreviewed
CVE-2024-2725
was published
Mar 22, 2024
A directory listing vulnerability in School Fees Management System v1.0 allows attackers to list...
High
Unreviewed
CVE-2023-49981
was published
Mar 21, 2024
A Information Exposure Vulnerability has been found on Meta4 HR. This vulnerability allows an...
High
Unreviewed
CVE-2024-2632
was published
Mar 19, 2024
An issue was discovered in OpenClinic GA 5.247.01. An Information Disclosure vulnerability has...
High
Unreviewed
CVE-2023-40278
was published
Mar 19, 2024
Unitronics Unistream Unilogic – Versions prior to 1.35.227 -
CWE-200: Exposure of Sensitive...
High
Unreviewed
CVE-2024-27769
was published
Mar 18, 2024
This allows attackers to use a maliciously formed API request to gain access to an API...
High
Unreviewed
CVE-2024-1222
was published
Mar 14, 2024
An information leak in the currentsetting.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40...
High
Unreviewed
CVE-2024-28340
was published
Mar 12, 2024
Information exposure vulnerability in Badger Meter Monitool affecting versions up to 4.6.3 and...
High
Unreviewed
CVE-2024-1302
was published
Mar 12, 2024
A race condition was addressed with additional validation. This issue is fixed in macOS Sonoma 14...
High
Unreviewed
CVE-2024-23235
was published
Mar 8, 2024
An issue was discovered in Webbax "Super Newsletter" (supernewsletter) module for PrestaShop...
High
Unreviewed
CVE-2024-25839
was published
Mar 3, 2024
Couchbase Server before 7.2.4 has a private key leak in goxdcr.log.
High
Unreviewed
CVE-2024-23302
was published
Feb 29, 2024
In the module "Survey TMA" (ecomiz_survey_tma) up to version 2.0.0 from Ecomiz for PrestaShop, a...
High
Unreviewed
CVE-2024-24309
was published
Feb 24, 2024
Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability
High
Unreviewed
CVE-2024-21380
was published
Feb 13, 2024
Under certain circumstances IQ Panel4 and IQ4 Hub panel software prior to version 4.4.2 could...
High
Unreviewed
CVE-2024-0242
was published
Feb 8, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in InstaWP Team InstaWP...
High
Unreviewed
CVE-2024-23506
was published
Jan 27, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in SNP Digital SalesKing...
High
Unreviewed
CVE-2024-22154
was published
Jan 24, 2024
Out-of-bounds access vulnerability in the device authentication module. Successful exploitation...
High
Unreviewed
CVE-2023-44112
was published
Jan 16, 2024
The "tokenKey" value used in user authorization is visible in the HTML source of the login page.
High
Unreviewed
CVE-2023-49261
was published
Jan 12, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WP Swings Coupon...
High
Unreviewed
CVE-2023-52190
was published
Jan 8, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Naa986 WP Stripe...
High
Unreviewed
CVE-2023-52143
was published
Jan 5, 2024
There is a possible information disclosure due to a missing permission check. This could lead to...
High
Unreviewed
CVE-2023-4164
was published
Jan 3, 2024
Tencent tdsqlpcloud through 1.8.5 allows unauthenticated remote attackers to discover database...
High
Unreviewed
CVE-2023-52286
was published
Dec 31, 2023
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in miniOrange miniOrange...
High
Unreviewed
CVE-2022-44589
was published
Dec 29, 2023
Arbitrary file properties reading vulnerability in Apache Software Foundation Apache OFBiz when...
High
Unreviewed
CVE-2023-50968
was published
Dec 26, 2023
ProTip!
Advisories are also available from the
GraphQL API