GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
26 advisories
Filter by severity
The product is vulnerable to pass-the-hash attacks in combination with hardcoded credentials of...
Critical
Unreviewed
CVE-2024-10773
was published
Dec 6, 2024
Hidden functionality issue in multiple digital video recorders provided by TAKENAKA ENGINEERING...
High
Unreviewed
CVE-2024-47001
was published
Sep 18, 2024
Certain models of D-Link wireless routers contain hidden functionality. By sending specific...
High
Unreviewed
CVE-2024-45696
was published
Sep 16, 2024
Certain models of D-Link wireless routers have a hidden functionality where the telnet service is...
Critical
Unreviewed
CVE-2024-45697
was published
Sep 16, 2024
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All...
Moderate
Unreviewed
CVE-2024-37994
was published
Sep 10, 2024
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All...
High
Unreviewed
CVE-2024-37990
was published
Sep 10, 2024
A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker...
Critical
Unreviewed
CVE-2024-20439
was published
Sep 4, 2024
Longse model LBH30FE200W cameras, as well as products based on this device, provide an...
High
Unreviewed
CVE-2024-5633
was published
Jul 9, 2024
A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All...
Low
Unreviewed
CVE-2024-33583
was published
May 14, 2024
NEC Platforms DT900 and DT900S Series 5.0.0.0 – v5.3.4.4, v5.4.0.0 – v5.6.0.20 allows an attacker...
Critical
Unreviewed
CVE-2024-3016
was published
May 14, 2024
Hidden Functionality vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2,...
Critical
Unreviewed
CVE-2024-28011
was published
Mar 28, 2024
A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet (3KC9000-8TL75)...
High
Unreviewed
CVE-2024-22044
was published
Mar 12, 2024
PAX Android based POS devices with PayDroid_8.1.0_Sagittarius_V11.1.45_20230314 or earlier can...
Moderate
Unreviewed
CVE-2023-42134
was published
Jan 15, 2024
A vulnerability was found in Poly Trio 8800 7.2.6.0019 and classified as critical. Affected by...
Moderate
Unreviewed
CVE-2023-4467
was published
Dec 29, 2023
A vulnerability classified as problematic was found in Typecho 1.2.1. Affected by this...
Low
Unreviewed
CVE-2023-6614
was published
Dec 8, 2023
Hidden functionality vulnerability in the CBC products allows a remote authenticated attacker to...
High
Unreviewed
CVE-2023-40158
was published
Aug 23, 2023
In Snap One OvrC Pro versions prior to 7.2, when logged into the...
High
Unreviewed
CVE-2023-25183
was published
May 22, 2023
A command execution vulnerability exists in the ubus backend communications functionality of...
High
Unreviewed
CVE-2022-36429
was published
Mar 21, 2023
A command execution vulnerability exists in the hidden telnet service functionality of Netgear...
High
Unreviewed
CVE-2022-38452
was published
Mar 21, 2023
In WAGO Unmanaged Switch (852-111/000-001) in firmware version 01 an undocumented configuration...
Critical
Unreviewed
CVE-2022-3843
was published
Feb 16, 2023
On ORing net IAP-420(+) with FW version 2.0m a telnet server is enabled by default and cannot...
Critical
Unreviewed
CVE-2022-3203
was published
Oct 21, 2022
A vulnerability was found in ua-parser-js 0.7.29/0.8.0/1.0.0. It has been rated as critical. This...
High
Unreviewed
CVE-2021-4229
was published
May 25, 2022
Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT...
Critical
Unreviewed
CVE-2020-12504
was published
May 24, 2022
The affected product is vulnerable due to an undocumented interface found on the device, which...
High
Unreviewed
CVE-2020-16204
was published
May 24, 2022
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored...
Critical
Unreviewed
CVE-2021-24867
was published
Feb 22, 2022
ProTip!
Advisories are also available from the
GraphQL API