GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,508
Composer 4,176
Erlang 30
GitHub Actions 19
Go 1,982
Maven 5,155
npm 3,701
NuGet 656
pip 3,323
Pub 11
RubyGems 882
Rust 834
Swift 35

Unreviewed advisories

All unreviewed 232,996

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

52 advisories

Filter by severity

Sort by

Least recently updated

In wifi_item_edit_content of styles.xml , there is a possible FRP bypass due to Missing check for... High Unreviewed

CVE-2024-40650 was published Sep 11, 2024

An improperly implemented security check for standard vulnerability [CWE-358] in FortiADC Web... Low Unreviewed

CVE-2024-36511 was published Sep 10, 2024

Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote... High Unreviewed

CVE-2024-7965 was published Aug 21, 2024

A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... Low Unreviewed

CVE-2024-41907 was published Aug 13, 2024

Inappropriate implementation in Fullscreen in Google Chrome on Android prior to 127.0.6533.72... Critical Unreviewed

CVE-2024-6995 was published Aug 6, 2024

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote... Critical Unreviewed

CVE-2024-7003 was published Aug 6, 2024

Inappropriate implementation in Sign-In in Google Chrome prior to 1.3.36.351 allowed a remote... Moderate Unreviewed

CVE-2024-5500 was published Jul 17, 2024

Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote... High Unreviewed

CVE-2024-6773 was published Jul 17, 2024

Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote... High Unreviewed

CVE-2024-6772 was published Jul 17, 2024

Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote... High Unreviewed

CVE-2024-6101 was published Jun 20, 2024

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app... High Unreviewed

CVE-2024-27842 was published May 14, 2024

A vulnerability exists in the RTU500 that allows for authenticated and authorized users to... High Unreviewed

CVE-2024-2617 was published Apr 30, 2024

Inappropriate implementation in Autofill in Google Chrome prior to 124.0.6367.60 allowed an... Moderate Unreviewed

CVE-2024-3838 was published Apr 17, 2024

Inappropriate implementation in Extensions in Google Chrome prior to 124.0.6367.60 allowed a... Moderate Unreviewed

CVE-2024-3844 was published Apr 17, 2024

An issue in Weave Weave Desktop v.7.78.10 allows a local attacker to execute arbitrary code via a... High Unreviewed

CVE-2024-25545 was published Apr 12, 2024

An authentication bypass vulnerability was reported in Lenovo devices with Synaptics fingerprint... Moderate Unreviewed

CVE-2024-23592 was published Apr 5, 2024

Inappropriate implementation in V8 in Google Chrome prior to 122.0.6261.111 allowed a remote... High Unreviewed

CVE-2024-2174 was published Mar 6, 2024

The issue was addressed with improved UI handling. This issue is fixed in iOS 17.1 and iPadOS 17... High Unreviewed

CVE-2023-40445 was published Oct 25, 2023

A non-feature complete authentication mechanism exists in the production application allowing an... Critical Unreviewed

CVE-2023-3266 was published Aug 14, 2023

Parameter verification vulnerability in the installd module. Successful exploitation of this... Critical Unreviewed

CVE-2023-39403 was published Aug 13, 2023

Zoom for Windows clients prior to 5.14.0 contain an improper restriction of operations within the... Moderate Unreviewed

CVE-2023-28601 was published Jun 13, 2023

The DeepL Pro API translation plugin WordPress plugin before 1.7.5 discloses sensitive... High Unreviewed

CVE-2022-3691 was published Nov 21, 2022

Multiple vulnerabilities in the Application Level Gateway (ALG) for the Network Address... Moderate Unreviewed

CVE-2021-34791 was published May 24, 2022

Multiple vulnerabilities in the Application Level Gateway (ALG) for the Network Address... Moderate Unreviewed

CVE-2021-34790 was published May 24, 2022

It was discovered that OpenShift Container Platform's (OCP) distribution of Kibana could open in... Moderate Unreviewed

CVE-2020-10743 was published May 24, 2022

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

52 advisories