GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
33 advisories
Filter by severity
Sensitive information disclosure due to spell-jacking. The following products are affected:...
Moderate
Unreviewed
CVE-2024-49386
was published
Oct 17, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15...
Moderate
Unreviewed
CVE-2023-1936
was published
Jul 11, 2023
This vulnerability exists in LD DP Back Office due to improper validation of certain parameters ...
High
Unreviewed
CVE-2024-47085
was published
Sep 19, 2024
This vulnerability exists in Apex Softcell LD Geo due to improper validation of the certain...
High
Unreviewed
CVE-2024-47087
was published
Sep 19, 2024
Exposure of Private Personal Information to an Unauthorized Actor in GitHub repository gnuboard...
High
Unreviewed
CVE-2022-1252
was published
Apr 12, 2022
This vulnerability exists in Reedos aiM-Star version 2.0.1 due to transmission of sensitive...
High
Unreviewed
CVE-2024-45787
was published
Sep 11, 2024
An attacker with no knowledge of the current users in the web application, could build a...
Moderate
Unreviewed
CVE-2024-8891
was published
Sep 18, 2024
Sensitive information disclosure due to spell-jacking. The following products are affected:...
Moderate
Unreviewed
CVE-2023-44156
was published
Sep 27, 2023
Sensitive information disclosure due to excessive collection of system information. The following...
Low
Unreviewed
CVE-2023-48680
was published
Feb 27, 2024
Sensitive information disclosure due to excessive collection of system information. The following...
Low
Unreviewed
CVE-2023-44213
was published
Oct 6, 2023
Due to missing authorization checks, SAP Business Warehouse (BEx Analyzer) allows an...
Moderate
Unreviewed
CVE-2024-44113
was published
Sep 10, 2024
Due to missing authorization checks, SAP BEx Analyzer allows an authenticated attacker to access...
Moderate
Unreviewed
CVE-2024-41729
was published
Sep 10, 2024
The Android Mobile Whale browser app before 3.0.1.2 allows the attacker to bypass its browser...
Moderate
Unreviewed
CVE-2023-25632
was published
Nov 27, 2023
Dell Path to PowerProtect, versions 1.1, 1.2, contains an Exposure of Private Personal...
Moderate
Unreviewed
CVE-2024-37136
was published
Sep 3, 2024
Improper access control in the clipboard synchronization feature in TeamViewer Full Client prior...
Moderate
Unreviewed
CVE-2024-6053
was published
Aug 28, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Botanik Software...
High
Unreviewed
CVE-2023-5983
was published
Nov 22, 2023
A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions), SIMATIC WinCC Runtime...
High
Unreviewed
CVE-2024-30321
was published
Jul 9, 2024
In the module "Theme settings" (pk_themesettings) <= 1.8.8 from Promokit.eu for PrestaShop, a...
High
Unreviewed
CVE-2024-36682
was published
Jun 25, 2024
An issue in Foundation.app Foundation platform 1.0 allows a remote attacker to obtain sensitive...
High
Unreviewed
CVE-2023-50053
was published
Apr 30, 2024
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-38103
was published
Jul 26, 2024
IBM InfoSphere Information Server 11.7 could disclose sensitive user information to another user...
Low
Unreviewed
CVE-2024-37533
was published
Jul 24, 2024
In the module "Login as customer PRO" (loginascustomerpro) <1.2.7 from Weblir for PrestaShop, a...
High
Unreviewed
CVE-2024-36677
was published
Jun 19, 2024
An issue in FME Modules eventsmanager before 4.4.0 allows an attacker to obtain sensitive...
High
Unreviewed
CVE-2024-33271
was published
Apr 29, 2024
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-29987
was published
Apr 18, 2024
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
High
Unreviewed
CVE-2024-26192
was published
Feb 24, 2024
ProTip!
Advisories are also available from the
GraphQL API