Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
33
GitHub Actions
22
Go
2,121
Maven
5,000+
npm
3,783
NuGet
683
pip
3,465
Pub
12
RubyGems
893
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

397 advisories

Loading
wolfSSL SP Math All RSA implementation is vulnerable to the Marvin Attack, new variation of a... Moderate Unreviewed
CVE-2023-6935 was published Feb 10, 2024
In the Linux kernel, the following vulnerability has been resolved: x86: fix user address... Moderate Unreviewed
CVE-2024-50102 was published Nov 5, 2024
IBM TXSeries for Multiplatforms 10.1 could allow an attacker to determine valid usernames due to... Moderate Unreviewed
CVE-2024-41741 was published Nov 1, 2024
A vulnerability was found in nasirkhan Laravel Starter up to 11.8.0. It has been rated as... Moderate Unreviewed
CVE-2024-6056 was published Jun 17, 2024
A vulnerability, which was classified as problematic, was found in spa-cartcms 1.9.0.6. Affected... Moderate Unreviewed
CVE-2024-6129 was published Jun 18, 2024
A vulnerability in Cisco Integrated Management Controller could allow an unauthenticated,... Moderate Unreviewed
CVE-2020-26062 was published Nov 18, 2024
vantage6 vulnerable to Observable Response Discrepancy Moderate
CVE-2022-39228 was published for vantage6 (pip) Feb 28, 2023
An issue was discovered in the ProofreadPage (aka Proofread Page) extension for MediaWiki through... Moderate Unreviewed
CVE-2023-37305 was published Jun 30, 2023
Certain Cypress (and Broadcom) Wireless Combo chips, when a January 2021 firmware update is not... Moderate Unreviewed
CVE-2020-10367 was published Nov 11, 2024
Certain Cypress (and Broadcom) Wireless Combo chips, when a January 2021 firmware update is not... Moderate Unreviewed
CVE-2020-10369 was published Nov 11, 2024
This issue was addressed with improved data protection. This issue is fixed in iOS 16.1 and... Moderate Unreviewed
CVE-2022-42792 was published Jun 23, 2023
Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext. This... Moderate Unreviewed
CVE-2024-11159 was published Nov 13, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2, macOS... Moderate Unreviewed
CVE-2024-54476 was published Dec 12, 2024
A vulnerability classified as problematic was found in funnyzpc Mee-Admin up to 1.6. This... Moderate Unreviewed
CVE-2024-12663 was published Dec 16, 2024
The Page Restriction WordPress (WP) – Protect WP Pages/Post plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-11297 was published Dec 20, 2024
Some Honor products are affected by information leak vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2024-8994 was published Dec 26, 2024
Some Honor products are affected by information leak vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2024-8993 was published Dec 26, 2024
Some Honor products are affected by information leak vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2024-8992 was published Dec 26, 2024
Some Honor products are affected by information leak vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2024-47154 was published Dec 26, 2024
Some Honor products are affected by information leak vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2024-47153 was published Dec 26, 2024
Some Honor products are affected by information leak vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2024-47155 was published Dec 26, 2024
A vulnerability, which was classified as problematic, has been found in Antabot White-Jotter up... Moderate Unreviewed
CVE-2024-13028 was published Dec 30, 2024
An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18,... Moderate Unreviewed
CVE-2024-54454 was published Dec 27, 2024
In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix... Moderate Unreviewed
CVE-2022-48730 was published Jun 20, 2024
IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 could allow a remote user to enumerate usernames... Moderate Unreviewed
CVE-2021-20556 was published May 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database