GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,033
Composer 5,080
Erlang 39
GitHub Actions 38
Go 2,750
Maven 6,169
npm 4,356
NuGet 765
pip 4,116
Pub 12
RubyGems 960
Rust 1,069
Swift 45

Unreviewed advisories

All unreviewed 280,750

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,158 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Authentication Bypass in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical... Moderate Unreviewed

CVE-2024-31800 was published Aug 15, 2024

An authentication bypass vulnerability in GoAnywhere MFT prior to 7.6.0 allows Admin Users with... Moderate Unreviewed

CVE-2024-25157 was published Aug 14, 2024

BIG-IP Next Central Manager may allow an attacker to lock out an account that has never been... Moderate Unreviewed

CVE-2024-37028 was published Aug 14, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting'),... Moderate Unreviewed

CVE-2024-35775 was published Aug 13, 2024

Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow... Moderate Unreviewed

CVE-2024-42164 was published Aug 12, 2024

An issue was discovered in GitLab EE starting from version 16.7 before 17.0.6, version 17.1... Moderate Unreviewed

CVE-2024-4784 was published Aug 8, 2024

An improper authentication vulnerability in web component of EPMM prior to 12.1.0.1 allows a... Moderate Unreviewed

CVE-2024-34788 was published Aug 7, 2024

This issue was addressed through improved state management. This issue is fixed in macOS Sonoma... Moderate Unreviewed

CVE-2024-40794 was published Jul 30, 2024

Mattermost Mobile Apps versions <=2.16.0 fail to validate that the push notifications received... Moderate Unreviewed

CVE-2024-39767 was published Jul 15, 2024

Nuvoton - CWE-305: Authentication Bypass by Primary Weakness An attacker with write access to... Moderate Unreviewed

CVE-2024-38433 was published Jul 11, 2024

Windows Remote Desktop Licensing Service Denial of Service Vulnerability Moderate Unreviewed

CVE-2024-38099 was published Jul 9, 2024

IBM FlashSystem 5300 USB ports may be usable even if the port has been disabled by the... Moderate Unreviewed

CVE-2024-39723 was published Jul 8, 2024

Improper Authentication vulnerability in the mobile monitoring feature of ICONICS GENESIS64... Moderate Unreviewed

CVE-2024-1573 was published Jul 4, 2024

Improper authentication in MTP application prior to SMR Jul-2024 Release 1 allows local attackers... Moderate Unreviewed

CVE-2024-20900 was published Jul 2, 2024

Improper authentication in BLE prior to SMR Jul-2024 Release 1 allows adjacent attackers to pair... Moderate Unreviewed

CVE-2024-20889 was published Jul 2, 2024

Improper input validation in BLE prior to SMR Jul-2024 Release 1 allows adjacent attackers to... Moderate Unreviewed

CVE-2024-20890 was published Jul 2, 2024

VMware ESXi contains an authentication bypass vulnerability. A malicious actor with sufficient... Moderate Unreviewed

CVE-2024-37085 was published Jun 25, 2024

Improper Authentication vulnerability in Play.Ht allows Accessing Functionality Not Properly... Moderate Unreviewed

CVE-2024-37233 was published Jun 24, 2024

An authentication issue was addressed with improved state management. This issue is fixed in... Moderate Unreviewed

CVE-2024-23251 was published Jun 10, 2024

An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor... Moderate Unreviewed

CVE-2022-45168 was published Jun 10, 2024

Broken Authentication vulnerability in SoftLab Integrate Google Drive.This issue affects... Moderate Unreviewed

CVE-2024-35670 was published Jun 4, 2024

Improper Authentication vulnerability in Pluggabl LLC Booster Elite for WooCommerce allows... Moderate Unreviewed

CVE-2023-51511 was published Jun 4, 2024

Improper Authentication vulnerability in Pluggabl LLC Booster for WooCommerce allows Accessing... Moderate Unreviewed

CVE-2023-48747 was published Jun 4, 2024

Improper Authentication vulnerability in WPMU DEV Defender Security allows Accessing... Moderate Unreviewed

CVE-2023-47189 was published Jun 4, 2024

An incorrect authentication vulnerability has been found in Socomec Net Vision affecting version... Moderate Unreviewed

CVE-2024-4601 was published May 7, 2024

Previous 1…6…47 Next

Previous 1 2 3 4 5 6 7 8 … 46 47 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,158 advisories