GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,496
Composer 4,170
Erlang 30
GitHub Actions 19
Go 1,981
Maven 5,155
npm 3,700
NuGet 656
pip 3,319
Pub 11
RubyGems 882
Rust 834
Swift 35

Unreviewed advisories

All unreviewed 232,959

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

232,959 advisories

Filter by severity

Sort by

Least recently updated

Out-of-bounds write in Battery Full Capacity node prior to Firmware update Sep-2024 Release on... Moderate Unreviewed

CVE-2024-49409 was published Nov 6, 2024

Improper authorization in Settings prior to SMR Nov-2024 Release 1 allows physical attackers to... Low Unreviewed

CVE-2024-34682 was published Nov 6, 2024

Improper input validation in Dressroom prior to SMR Nov-2024 Release 1 allow physical attackers... Moderate Unreviewed

CVE-2024-49402 was published Nov 6, 2024

Improper validation of integrity check value in Blockchain Keystore prior to version 1.3.16... Moderate Unreviewed

CVE-2024-49406 was published Nov 6, 2024

Improper Access Control in Samsung Video Player prior to versions 7.3.29.1 in Android 12, 7.3.36... Moderate Unreviewed

CVE-2024-49404 was published Nov 6, 2024

Improper input validation in BluetoothAdapter prior to SMR Nov-2024 Release 1 allows local... Moderate Unreviewed

CVE-2024-34681 was published Nov 6, 2024

Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to... Low Unreviewed

CVE-2024-34675 was published Nov 6, 2024

The WS Form LITE – Drag & Drop Contact Form Builder for WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2024-10647 was published Nov 6, 2024

Out-of-bounds write in parsing subtitle file in libsubextractor.so prior to SMR Nov-2024 Release... Moderate Unreviewed

CVE-2024-34676 was published Nov 6, 2024

Improper access control in Contacts prior to SMR Nov-2024 Release 1 allows physical attackers to... Moderate Unreviewed

CVE-2024-34674 was published Nov 6, 2024

Improper Input Validation in IpcProtocol in Modem prior to SMR Nov-2024 Release 1 allows local... Moderate Unreviewed

CVE-2024-34673 was published Nov 6, 2024

Command injection vulnerability in the underlying CLI service could lead to unauthenticated... Critical Unreviewed

CVE-2024-47460 was published Nov 6, 2024

An authenticated command injection vulnerability exists in the Instant AOS-8 and AOS-10 command... High Unreviewed

CVE-2024-47461 was published Nov 6, 2024

The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Basic... Moderate Unreviewed

CVE-2024-10084 was published Nov 6, 2024

An arbitrary file creation vulnerability exists in the Instant AOS-8 and AOS-10 command line... High Unreviewed

CVE-2024-47463 was published Nov 6, 2024

Tenda AC6 v2.0 V15.03.06.50 was discovered to contain a buffer overflow in the function ... Unknown Unreviewed

CVE-2024-51116 was published Nov 6, 2024

The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for... High Unreviewed

CVE-2024-10028 was published Nov 6, 2024

An issue in Lens Visual integration with Power BI v.4.0.0.3 allows a remote attacker to execute... Unknown Unreviewed

CVE-2024-48746 was published Nov 6, 2024

Lylme Spage v1.9.5 is vulnerable to Incorrect Access Control. There is no limit on the number of... Unknown Unreviewed

CVE-2024-48176 was published Nov 6, 2024

An authenticated Path Traversal vulnerability exists in Instant AOS-8 and AOS-10. Successful... Moderate Unreviewed

CVE-2024-47464 was published Nov 6, 2024

Command injection vulnerability in the underlying CLI service could lead to unauthenticated... Critical Unreviewed

CVE-2024-42509 was published Nov 6, 2024

An issue in Linux Server Heimdall v.2.6.1 allows a remote attacker to execute arbitrary code via... Unknown Unreviewed

CVE-2024-51358 was published Nov 6, 2024

An arbitrary file creation vulnerability exists in the Instant AOS-8 and AOS-10 command line... High Unreviewed

CVE-2024-47462 was published Nov 6, 2024

DCME-320 v7.4.12.90 was discovered to contain a command injection vulnerability. Unknown Unreviewed

CVE-2024-51115 was published Nov 6, 2024

Cross-Site Request Forgery (CSRF) vulnerability in JATOS v3.9.3 that allows attackers to perform... Unknown Unreviewed

CVE-2024-51381 was published Nov 5, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

232,959 advisories