Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,041
Maven
5,000+
npm
3,733
NuGet
662
pip
3,414
Pub
12
RubyGems
891
Rust
866
Swift
36
Unreviewed advisories
All unreviewed
5,000+

29 advisories

Loading
thorsten/phpmyfaq Unintended File Download Triggered by Embedded Frames Moderate
CVE-2024-55889 was published for thorsten/phpmyfaq (Composer) Dec 13, 2024
geo-chen
User Interface (UI) Misrepresentation of Critical Information vulnerability in Documenso allows... High Unreviewed
CVE-2024-52271 was published Dec 5, 2024
User Interface (UI) Misrepresentation of Critical Information vulnerability in DropBox Sign... High Unreviewed
CVE-2024-52270 was published Dec 5, 2024
** INITIAL LIMITED RELEASE ** User Interface (UI) Misrepresentation of Critical Information... High Unreviewed
CVE-2024-52269 was published Dec 4, 2024
** INITIAL LIMITED RELEASE ** User Interface (UI) Misrepresentation of Critical Information... High Unreviewed
CVE-2024-52276 was published Dec 4, 2024
User Interface (UI) Misrepresentation of Critical Information vulnerability in DocuSeal allows... High Unreviewed
CVE-2024-52277 was published Dec 4, 2024
Microsoft Exchange Server Spoofing Vulnerability High Unreviewed
CVE-2024-49040 was published Nov 12, 2024
Dell E-Lab Navigator, [3.1.9, 3.2.0], contains an Insecure Direct Object Reference Vulnerability... Moderate Unreviewed
CVE-2024-22455 was published Oct 16, 2024
Multiple Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST... Moderate Unreviewed
CVE-2024-47044 was published Sep 26, 2024
User interface (UI) misrepresentation of critical information issue exists in multiple Home... High Unreviewed
CVE-2024-47045 was published Sep 26, 2024
Inappropriate implementation in UI in Google Chrome prior to 124.0.6367.60 allowed a remote... Moderate Unreviewed
CVE-2024-7019 was published Sep 24, 2024
Inappropriate implementation in Autofill in Google Chrome prior to 124.0.6367.60 allowed a remote... Moderate Unreviewed
CVE-2024-7020 was published Sep 24, 2024
Inappropriate implementation in Compositing in Google Chrome prior to 119.0.6045.105 allowed a... Moderate Unreviewed
CVE-2023-7281 was published Sep 24, 2024
Inappropriate implementation in Navigation in Google Chrome prior to 113.0.5672.63 allowed a... Moderate Unreviewed
CVE-2023-7282 was published Sep 24, 2024
Windows MSHTML Platform Spoofing Vulnerability High Unreviewed
CVE-2024-43461 was published Sep 10, 2024
Microsoft Teams for iOS Spoofing Vulnerability Moderate Unreviewed
CVE-2024-38197 was published Aug 13, 2024
The date picker could partially obscure security prompts. This could be used by a malicious site... High Unreviewed
CVE-2024-7529 was published Aug 6, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.8 prior to 16.11... Low Unreviewed
CVE-2024-6595 was published Jul 17, 2024
Inappropriate implementation in Picture in Picture in Google Chrome prior to 119.0.6045.105... Moderate Unreviewed
CVE-2023-7011 was published Jul 17, 2024
Windows MSHTML Platform Spoofing Vulnerability High Unreviewed
CVE-2024-38112 was published Jul 9, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2024-38093 was published Jun 20, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2024-38082 was published Jun 20, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2024-30055 was published May 14, 2024
In multiple functions of NotificationManagerService.java, there is a possible way to not show a... Critical Unreviewed
CVE-2024-23708 was published May 7, 2024
IBM PowerSC 1.3, 2.0, and 2.1 could allow a remote attacker to hijack the clicking action of the... Moderate Unreviewed
CVE-2023-50938 was published Feb 2, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database