GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,339
Composer 4,133
Erlang 29
GitHub Actions 19
Go 1,940
Maven 5,135
npm 3,677
NuGet 645
pip 3,295
Pub 11
RubyGems 877
Rust 830
Swift 35

Unreviewed advisories

All unreviewed 230,804

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,364 advisories

Filter by severity

Sort by

Least recently updated

In Janitza GridVis through 9.0.66, use of hard-coded credentials in the de.janitza.pasw.feature... High Unreviewed

CVE-2023-50894 was published Mar 26, 2024

Information exposure vulnerability in the CIGESv2 system. A remote attacker might be able to... High Unreviewed

CVE-2024-2725 was published Mar 22, 2024

A directory listing vulnerability in School Fees Management System v1.0 allows attackers to list... High Unreviewed

CVE-2023-49981 was published Mar 21, 2024

A Information Exposure Vulnerability has been found on Meta4 HR. This vulnerability allows an... High Unreviewed

CVE-2024-2632 was published Mar 19, 2024

An issue was discovered in OpenClinic GA 5.247.01. An Information Disclosure vulnerability has... High Unreviewed

CVE-2023-40278 was published Mar 19, 2024

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-200: Exposure of Sensitive... High Unreviewed

CVE-2024-27769 was published Mar 18, 2024

This allows attackers to use a maliciously formed API request to gain access to an API... High Unreviewed

CVE-2024-1222 was published Mar 14, 2024

An information leak in the currentsetting.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40... High Unreviewed

CVE-2024-28340 was published Mar 12, 2024

Information exposure vulnerability in Badger Meter Monitool affecting versions up to 4.6.3 and... High Unreviewed

CVE-2024-1302 was published Mar 12, 2024

A race condition was addressed with additional validation. This issue is fixed in macOS Sonoma 14... High Unreviewed

CVE-2024-23235 was published Mar 8, 2024

An issue was discovered in Webbax "Super Newsletter" (supernewsletter) module for PrestaShop... High Unreviewed

CVE-2024-25839 was published Mar 3, 2024

Couchbase Server before 7.2.4 has a private key leak in goxdcr.log. High Unreviewed

CVE-2024-23302 was published Feb 29, 2024

In the module "Survey TMA" (ecomiz_survey_tma) up to version 2.0.0 from Ecomiz for PrestaShop, a... High Unreviewed

CVE-2024-24309 was published Feb 24, 2024

Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability High Unreviewed

CVE-2024-21380 was published Feb 13, 2024

Under certain circumstances IQ Panel4 and IQ4 Hub panel software prior to version 4.4.2 could... High Unreviewed

CVE-2024-0242 was published Feb 8, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in InstaWP Team InstaWP... High Unreviewed

CVE-2024-23506 was published Jan 27, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in SNP Digital SalesKing... High Unreviewed

CVE-2024-22154 was published Jan 24, 2024

Out-of-bounds access vulnerability in the device authentication module. Successful exploitation... High Unreviewed

CVE-2023-44112 was published Jan 16, 2024

The "tokenKey" value used in user authorization is visible in the HTML source of the login page. High Unreviewed

CVE-2023-49261 was published Jan 12, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WP Swings Coupon... High Unreviewed

CVE-2023-52190 was published Jan 8, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Naa986 WP Stripe... High Unreviewed

CVE-2023-52143 was published Jan 5, 2024

There is a possible information disclosure due to a missing permission check. This could lead to... High Unreviewed

CVE-2023-4164 was published Jan 3, 2024

Tencent tdsqlpcloud through 1.8.5 allows unauthenticated remote attackers to discover database... High Unreviewed

CVE-2023-52286 was published Dec 31, 2023

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in miniOrange miniOrange... High Unreviewed

CVE-2022-44589 was published Dec 29, 2023

Arbitrary file properties reading vulnerability in Apache Software Foundation Apache OFBiz when... High Unreviewed

CVE-2023-50968 was published Dec 26, 2023

Previous 1 2 3 4 5 6 7 … 54 55 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,364 advisories