GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,403

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

673 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability can occur when capturing a media stream when the media source type is changed as... Critical Unreviewed

CVE-2018-5156 was published May 14, 2022

An Improper Input Validation vulnerability in Zscaler Client Connector on Linux allows Privilege... Critical Unreviewed

CVE-2023-28805 was published Oct 23, 2023

Chunghwa Telecom NOKIA G-040W-Q Firewall function has a vulnerability of input validation for... Critical Unreviewed

CVE-2023-41355 was published Nov 3, 2023

Enabling Simple Ajax Uploader plugin included in Laragon open-source software allows for a remote... Critical Unreviewed

CVE-2024-0864 was published Feb 29, 2024

Memory corruption while redirecting log file to any file location with any file name. Critical Unreviewed

CVE-2024-33066 was published Oct 7, 2024

Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server.This... Critical Unreviewed

CVE-2023-33934 was published Aug 9, 2023

Improper input validation in Zoom Desktop Client for Windows before 5.14.7 may allow an... Critical Unreviewed

CVE-2023-39216 was published Aug 8, 2023

An unvalidated input in a library function responsible for communicating between secure and non... Critical Unreviewed

CVE-2023-4020 was published Dec 15, 2023

In wlan service, there is a possible out of bounds write due to improper input validation. This... Critical Unreviewed

CVE-2024-20017 was published Mar 4, 2024

Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and... Critical Unreviewed

CVE-2024-24691 was published Feb 14, 2024

Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection.This... Critical Unreviewed

CVE-2024-7591 was published Sep 5, 2024

Improper Input Validation vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise,... Critical Unreviewed

CVE-2023-0636 was published Jul 6, 2023

Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify... Critical Unreviewed

CVE-2024-8889 was published Sep 18, 2024

Due to an improper input validation, an unauthenticated threat actor can send a malicious message... Critical Unreviewed

CVE-2024-5989 was published Jun 25, 2024

Due to an improper input validation, an unauthenticated threat actor can send a malicious message... Critical Unreviewed

CVE-2024-5988 was published Jun 25, 2024

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow... Critical Unreviewed

CVE-2022-47966 was published Jan 18, 2023

Atlassian has been made aware of an issue reported by a handful of customers where external... Critical Unreviewed

CVE-2023-22515 was published Oct 4, 2023

Improper Input Validation vulnerability in Hillstone Networks Hillstone Networks Web Application... Critical Unreviewed

CVE-2024-8073 was published Aug 26, 2024

The 1E-Exchange-CommandLinePing instruction that is part of the Network product pack available... Critical Unreviewed

CVE-2023-45163 was published Nov 6, 2023

The 1E-Exchange-URLResponseTime instruction that is part of the Network product pack available on... Critical Unreviewed

CVE-2023-45161 was published Nov 6, 2023

An issue in Vypor Attack API System v.1.0 allows a remote attacker to execute arbitrary code via... Critical Unreviewed

CVE-2024-44808 was published Sep 4, 2024

A remote code execution (RCE) vulnerability exists in the Pi Camera project, version 1.0,... Critical Unreviewed

CVE-2024-44809 was published Sep 4, 2024

A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™... Critical Unreviewed

CVE-2024-7988 was published Aug 26, 2024

Ezviz Internet PT Camera CS-CV246 D15655150 allows an unauthenticated host to access its live... Critical Unreviewed

CVE-2024-42531 was published Aug 23, 2024

An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input... Critical Unreviewed

CVE-2024-45167 was published Aug 22, 2024

Previous 1 2 3 4 5 … 26 27 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

673 advisories