Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,181
Erlang
31
GitHub Actions
19
Go
1,983
Maven
5,000+
npm
3,701
NuGet
656
pip
3,324
Pub
11
RubyGems
882
Rust
835
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

18 advisories

Loading
curl 7.1.1 to and including 7.75.0 is vulnerable to an "Exposure of Private Personal Information... Moderate Unreviewed
CVE-2021-22876 was published May 24, 2022
Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020.001.30020 (and earlier)... Moderate Unreviewed
CVE-2021-28559 was published May 24, 2022
There is a flaw in convert2rhel. convert2rhel passes the Red Hat account password to subscription... Moderate Unreviewed
CVE-2022-0852 was published Aug 29, 2022
A vulnerability in the web-based management interface of Cisco Email Security Appliance (ESA),... Moderate Unreviewed
CVE-2022-20942 was published Nov 4, 2022
A post-authentication information exposure vulnerability in the CGI program of Zyxel ATP series... Moderate Unreviewed
CVE-2023-22918 was published Apr 24, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15... Moderate Unreviewed
CVE-2023-1936 was published Jul 11, 2023
Sensitive information disclosure due to spell-jacking. The following products are affected:... Moderate Unreviewed
CVE-2023-44156 was published Sep 27, 2023
When an AWS DynamoDB table is used for user attribute storage, it is possible to retrieve the... Moderate Unreviewed
CVE-2023-34085 was published Oct 25, 2023
The Android Mobile Whale browser app before 3.0.1.2 allows the attacker to bypass its browser... Moderate Unreviewed
CVE-2023-25632 was published Nov 27, 2023
Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-29986 was published Apr 18, 2024
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-29987 was published Apr 18, 2024
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38103 was published Jul 26, 2024
Improper access control in the clipboard synchronization feature in TeamViewer Full Client prior... Moderate Unreviewed
CVE-2024-6053 was published Aug 28, 2024
Dell Path to PowerProtect, versions 1.1, 1.2, contains an Exposure of Private Personal... Moderate Unreviewed
CVE-2024-37136 was published Sep 3, 2024
Due to missing authorization checks, SAP BEx Analyzer allows an authenticated attacker to access... Moderate Unreviewed
CVE-2024-41729 was published Sep 10, 2024
Due to missing authorization checks, SAP Business Warehouse (BEx Analyzer) allows an... Moderate Unreviewed
CVE-2024-44113 was published Sep 10, 2024
An attacker with no knowledge of the current users in the web application, could build a... Moderate Unreviewed
CVE-2024-8891 was published Sep 18, 2024
Sensitive information disclosure due to spell-jacking. The following products are affected:... Moderate Unreviewed
CVE-2024-49386 was published Oct 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database