Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,041
Maven
5,000+
npm
3,733
NuGet
662
pip
3,414
Pub
12
RubyGems
891
Rust
866
Swift
36
Unreviewed advisories
All unreviewed
5,000+

101,190 advisories

Loading
An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary code via... High Unreviewed
CVE-2024-28716 was published Apr 30, 2024
ProQuality pqprintshippinglabels before v.4.15.0 is vulnerable to Directory Traversal via the... High Unreviewed
CVE-2023-45385 was published Apr 30, 2024
An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An unquoted... High Unreviewed
CVE-2024-23774 was published Apr 30, 2024
A vulnerability exists in the RTU500 that allows for authenticated and authorized users to... High Unreviewed
CVE-2024-2617 was published Apr 30, 2024
An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An Arbitrary file... High Unreviewed
CVE-2024-23773 was published Apr 30, 2024
Directory Traversal vulnerability in RaidenMAILD Mail Server v.4.9.4 and before allows a remote... High Unreviewed
CVE-2024-32399 was published Apr 22, 2024
modules/Users/models/Module.php in Vtiger CRM 7.5.0 allows a remote authenticated attacker to run... High Unreviewed
CVE-2023-46304 was published Apr 30, 2024
The O-RAN E2T I-Release Prometheus metric Increment function can crash in sctpThread.cpp for... High Unreviewed
CVE-2024-34045 was published Apr 30, 2024
Various software builds for the following TCL devices (30Z, A3X, 20XE, 10L) leak the device IMEI... High Unreviewed
CVE-2023-38298 was published Apr 22, 2024
An issue was discovered in a third-party com.factory.mmigroup component, shipped on devices from... High Unreviewed
CVE-2023-38297 was published Apr 22, 2024
Buffer Overflow vulnerability in msoulier tftpy commit 467017b844bf6e31745138a30e2509145b0c529c... High Unreviewed
CVE-2023-46566 was published Apr 29, 2024
An issue in FME Modules eventsmanager before 4.4.0 allows an attacker to obtain sensitive... High Unreviewed
CVE-2024-33271 was published Apr 29, 2024
Improper verification of a user input in Open Source MANO v7-v12 allows an authenticated attacker... High Unreviewed
CVE-2022-35503 was published Apr 22, 2024
An issue in onethink v.1.1 allows a remote attacker to execute arbitrary code via a crafted... High Unreviewed
CVE-2024-33443 was published Apr 29, 2024
An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da... High Unreviewed
CVE-2024-31823 was published Apr 29, 2024
Insecure Direct Object References (IDOR) vulnerability in Hospital Management System 1.0 allows... High Unreviewed
CVE-2024-28320 was published Apr 29, 2024
IEIT NF5280M6 UEFI firmware through 8.4 has a pool overflow vulnerability, caused by improper use... High Unreviewed
CVE-2023-52080 was published Apr 29, 2024
An issue was discovered in Znuny 7.0.1 through 7.0.16 where the ticket detail view in the... High Unreviewed
CVE-2024-32492 was published Apr 29, 2024
In KDE libksieve before 23.03.80, kmanagesieve/session.cpp places a cleartext password in server... High Unreviewed
CVE-2023-52723 was published Apr 29, 2024
RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the screen... High Unreviewed
CVE-2024-33899 was published Apr 29, 2024
Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute... High Unreviewed
CVE-2023-51798 was published Apr 19, 2024
Delinea Secret Server before 11.7.000001 allows attackers to bypass authentication via the SOAP... High Unreviewed
CVE-2024-33891 was published Apr 29, 2024
In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix out-of-bound... High Unreviewed
CVE-2022-48651 was published Apr 28, 2024
In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Harden... High Unreviewed
CVE-2022-48655 was published Apr 28, 2024
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Add some bounds... High Unreviewed
CVE-2024-26927 was published Apr 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database