Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,690
Maven
5,000+
npm
4,320
NuGet
760
pip
4,096
Pub
12
RubyGems
958
Rust
1,063
Swift
45
Unreviewed advisories
All unreviewed
5,000+

31 advisories

Loading
A vulnerability was determined in Tomofun Furbo 360 and Furbo Mini. The impacted element is an... Low Unreviewed
CVE-2025-11650 was published Oct 13, 2025
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Low Unreviewed
CVE-2025-43909 was published Oct 7, 2025
A security vulnerability has been detected in FNKvision Y215 CCTV Camera 10.194.120.40. This... Low Unreviewed
CVE-2025-9383 was published Aug 24, 2025
A vulnerability has been found in Vaelsys 4.1.0 and classified as problematic. This vulnerability... Low Unreviewed
CVE-2025-8260 was published Jul 28, 2025
Use of a broken or risky cryptographic algorithm in Office Developer Platform allows an... Low Unreviewed
CVE-2025-49756 was published Jul 8, 2025
Vulnerability in Best Practical Solutions, LLC's Request Tracker v5.0.7, where the Triple DES ... Low Unreviewed
CVE-2025-2545 was published May 5, 2025
A vulnerability was found in Netis WF-2404 1.1.124EN. It has been rated as problematic. This... Low Unreviewed
CVE-2025-2920 was published Mar 28, 2025
Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of... Low Unreviewed
CVE-2025-22475 was published Feb 4, 2025
Weak algorithm used to sign RPM package. The following products are affected: Acronis Cyber... Low Unreviewed
CVE-2024-55539 was published Dec 23, 2024
IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain sensitive information... Low Unreviewed
CVE-2023-37395 was published Dec 11, 2024
paillier-zk has ambiguous challenge derivation Low
GHSA-fpr5-jp2j-4q2f was published for paillier-zk (Rust) Nov 12, 2024
cggmp21 vulnerable to ambiguous challenge derivation Low
GHSA-rm66-9gh4-4gp8 was published for cggmp21 (Rust) Nov 12, 2024
cggmp21-keygen has ambiguous challenge derivation Low
GHSA-7jjx-3qw9-j6h6 was published for cggmp21-keygen (Rust) Nov 12, 2024
github.com/bincyber/go-sqlcrypter vulnerable to IV collision Low
GHSA-2j6r-9vv4-6gf5 was published for github.com/bincyber/go-sqlcrypter (Go) May 20, 2024
IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain sensitive information... Low Unreviewed
CVE-2023-37396 was published Apr 19, 2024
Dell Secure Connect Gateway, 5.18, contains an Inadequate Encryption Strength Vulnerability. An... Low Unreviewed
CVE-2024-22458 was published Mar 1, 2024
Vyper sha3 codegen bug Low
CVE-2024-24559 was published for vyper (pip) Feb 5, 2024
cyberthirst kuroi8
Credited to cyberthirst and kuroi8
A vulnerability was found in NFine Rapid Development Platform 20230511. It has been classified as... Low Unreviewed
CVE-2023-2900 was published May 25, 2023
"HCL Traveler Companion is vulnerable to an iOS weak cryptographic process vulnerability via the... Low Unreviewed
CVE-2020-14264 was published May 24, 2022
iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A locally authenticated... Low Unreviewed
CVE-2021-34688 was published May 24, 2022
GigaVUE-OS (GVOS) 5.4 - 5.9 uses a weak algorithm for a hash stored in internal database. Low Unreviewed
CVE-2020-23250 was published May 24, 2022
An issue was discovered in Yubico libykpiv before 2.1.0. An attacker can trigger an incorrect... Low Unreviewed
CVE-2020-13132 was published May 24, 2022
D-Link DSP-W215 1.26b03 devices allow information disclosure by intercepting messages on the... Low Unreviewed
CVE-2020-13135 was published May 24, 2022
A hard-coded encryption key vulnerability exists in the authentication functionality of WAGO e... Low Unreviewed
CVE-2019-5106 was published May 24, 2022
A vulnerability has been identified in SiNVR 3 Central Control Server (CCS) (all versions), SiNVR... Low Unreviewed
CVE-2019-18340 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database