Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,335
Erlang
31
GitHub Actions
22
Go
2,096
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

245 advisories

Loading
A security bypass vulnerability exists in the Removable Media Encryption (RME)component of... Moderate Unreviewed
CVE-2024-3334 was published Nov 15, 2024
The Jeg Elementor Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-8899 was published Nov 26, 2024
InfluxDB through 2.7.10 allows allAccess administrators to retrieve all raw tokens via an "influx... Critical Unreviewed
CVE-2024-30896 was published Nov 27, 2024
Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could enable an attacker to... High Unreviewed
CVE-2024-47043 was published Dec 6, 2024
Dell PowerFlex appliance versions prior to IC 46.381.00 and IC 46.376.00, Dell PowerFlex rack... High Unreviewed
CVE-2024-37144 was published Dec 10, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed
CVE-2024-44200 was published Dec 12, 2024
The issue was addressed by adding additional logic. This issue is fixed in iPadOS 17.7.3, iOS 18... Low Unreviewed
CVE-2024-54485 was published Dec 12, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2, macOS... Moderate Unreviewed
CVE-2024-54477 was published Dec 12, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2024-54504 was published Dec 12, 2024
Wapro ERP Desktop is vulnerable to MS SQL protocol downgrade request from a server side, what... Critical Unreviewed
CVE-2024-4995 was published Dec 18, 2024
Keyfactor Remote File Orchestrator (aka remote-file-orchestrator) 2.8 before 2.8.1 allows... Moderate Unreviewed
CVE-2024-49201 was published Dec 18, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2024-44292 was published Dec 20, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2024-44298 was published Dec 20, 2024
Smart Toilet Lab - Motius 1.3.11 is running with debug mode turned on (DEBUG = True) and exposing... High Unreviewed
CVE-2024-56113 was published Jan 9, 2025
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820,... Moderate Unreviewed
CVE-2024-48883 was published Jan 13, 2025
An access control issue in the component /api/squareComment/DelectSquareById of iceCMS v2.2.0... High Unreviewed
CVE-2025-22984 was published Jan 14, 2025
An access control issue in the component /square/getAllSquare/circle of iceCMS v2.2.0 allows... High Unreviewed
CVE-2025-22983 was published Jan 14, 2025
Windows Kerberos Security Feature Bypass Vulnerability High Unreviewed
CVE-2025-21299 was published Jan 14, 2025
Information Disclosure in API in Replicated Replicated Classic versions prior to 2.53.1 on all... Moderate Unreviewed
CVE-2021-42718 was published Jan 24, 2025
Xerox Workplace Suite stores tokens in session storage, which may expose them to potential access... Moderate Unreviewed
CVE-2024-55931 was published Jan 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database