Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,318
Maven
5,000+
npm
3,950
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+

107,981 advisories

Loading
User interface (UI) misrepresentation of critical information issue exists in multiple Home... High Unreviewed
CVE-2024-47045 was published Sep 26, 2024
Inclusion of functionality from untrusted control sphere vulnerability in OpenSSL DLL component... High Unreviewed
CVE-2022-49038 was published Sep 26, 2024
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in vss... High Unreviewed
CVE-2023-52946 was published Sep 26, 2024
An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows... High Unreviewed
CVE-2024-8404 was published Sep 26, 2024
A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XE Software... High Unreviewed
CVE-2024-20464 was published Sep 25, 2024
A vulnerability in the implementation of the IPv4 fragmentation reassembly code in Cisco IOS XE... High Unreviewed
CVE-2024-20467 was published Sep 25, 2024
Gigastone TR1 Travel Router R101 v1.0.2 is vulnerable to Command Injection. This allows an... High Unreviewed
CVE-2024-44678 was published Sep 25, 2024
An issue was discovered in AdaCore ada_web_services 20.0 allows an attacker to escalate... High Unreviewed
CVE-2024-41708 was published Sep 25, 2024
An issue in TheGreenBow Windows Standard VPN Client 6.87.108 (and older), Windows Enterprise VPN... High Unreviewed
CVE-2024-45750 was published Sep 25, 2024
Remote command execution in promptr High
CVE-2024-46489 was published for @ifnotnowwhen/promptr (npm) Sep 25, 2024
Heap-based Buffer Overflow in sqlite-vec High
CVE-2024-46488 was published for sqlite-vec (RubyGems) Sep 25, 2024
A vulnerability in the process that classifies traffic that is going to the Unified Threat... High Unreviewed
CVE-2024-20455 was published Sep 25, 2024
A vulnerability in the DHCP Snooping feature of Cisco IOS XE Software on Software-Defined Access ... High Unreviewed
CVE-2024-20480 was published Sep 25, 2024
A vulnerability in the SSH server of Cisco Catalyst Center, formerly Cisco DNA Center, could... High Unreviewed
CVE-2024-20350 was published Sep 25, 2024
A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service... High Unreviewed
CVE-2024-20436 was published Sep 25, 2024
Directory Traversal vulnerability in Centro de Tecnologia da Informaco Renato Archer InVesalius3... High Unreviewed
CVE-2024-44825 was published Sep 25, 2024
A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and... High Unreviewed
CVE-2024-20433 was published Sep 25, 2024
A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an... High Unreviewed
CVE-2024-20437 was published Sep 25, 2024
OpenSlides 4.0.15 verifies passwords by comparing password hashes using a function with content... High Unreviewed
CVE-2024-22893 was published Sep 25, 2024
HCL Nomad server on Domino is affected by an open proxy vulnerability in which an unauthenticated... High Unreviewed
CVE-2024-30128 was published Sep 25, 2024
VLC media player 3.0.20 and earlier is vulnerable to denial of service through an integer... High Unreviewed
CVE-2024-46461 was published Sep 25, 2024
In Progress Telerik UI for WinForms versions prior to 2024 Q3 (2024.3.924), a command injection... High Unreviewed
CVE-2024-7679 was published Sep 25, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed
CVE-2024-43959 was published Sep 25, 2024
OpenSlides 4.0.15 was discovered to be using a weak hashing algorithm to store passwords. High Unreviewed
CVE-2024-22892 was published Sep 25, 2024
In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a code execution attack is... High Unreviewed
CVE-2024-8316 was published Sep 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database