Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

59 advisories

Loading
SENAYAN Library Management System (SLiMS) Bulian v9.5.2 does not strip exif data from uploaded... High Unreviewed
CVE-2023-29850 was published Apr 14, 2023
The sensitive information exposure vulnerability in the CGI “Export_Log” and the binary “zcmd” in... High Unreviewed
CVE-2023-28770 was published Jul 6, 2023
Windows MSHTML Platform Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-30040 was published May 14, 2024
IBM Spectrum Virtualize 8.5, under certain circumstances, could disclose sensitive credential... High Unreviewed
CVE-2023-27870 was published May 11, 2023
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... High Unreviewed
CVE-2025-21510 was published Jan 21, 2025
In multiple locations, there is a possible way to obtain any system permission due to a logic... High Unreviewed
CVE-2024-43095 was published Jan 22, 2025
In multiple functions of ConnectivityService.java, there is a possible way for a Wi-Fi AP to... High Unreviewed
CVE-2024-49734 was published Jan 22, 2025
The multimedia video module has a vulnerability in data processing.Successful exploitation of... High Unreviewed
CVE-2023-1696 was published May 20, 2023
Macrovideo v380pro v1.4.97 shares the device id and password when sharing the device. High Unreviewed
CVE-2023-33741 was published May 31, 2023
Windows DNS Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26221 was published Apr 9, 2024
An access control issue in the component /juis_boxinfo.xml of AVM FRITZ!Box 7530 AX v7.59 allows... High Unreviewed
CVE-2024-54767 was published Jan 7, 2025
Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to... High Unreviewed
CVE-2023-1707 was published Jun 13, 2023
An issue was discovered in Ujcms v6.0.2 allows attackers to gain sensitive information via the... High Unreviewed
CVE-2023-34878 was published Jun 14, 2023
In the LG LAF component, there is a special command that allowed modification of certain... High Unreviewed
CVE-2018-9364 was published Nov 19, 2024
Observable discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may... High Unreviewed
CVE-2024-28885 was published Nov 13, 2024
mudler/localai version 2.17.1 is vulnerable to a Timing Attack. This type of side-channel attack... High Unreviewed
CVE-2024-7010 was published Oct 29, 2024
A potential security vulnerability has been reported in the system BIOS of certain HP PC products... High Unreviewed
CVE-2023-5410 was published Mar 12, 2024
An issue in Sourcebans++ before v.1.8.0 allows a remote attacker to obtain sensitive information... High Unreviewed
CVE-2024-40490 was published Nov 1, 2024
A timing attack vulnerability exists in the gaizhenbiao/chuanhuchatgpt repository, specifically... High Unreviewed
CVE-2024-5124 was published Jun 6, 2024
TOTOLINK CP300+ V5.2cu.7594 contains a Denial of Service vulnerability in function RebootSystem... High Unreviewed
CVE-2023-34669 was published Jul 17, 2023
Video frames could have been leaked between origins in some situations. This vulnerability... High Unreviewed
CVE-2024-10463 was published Oct 29, 2024
Observable timing discrepancy issue exists in IPCOM EX2 Series V01L02NF0001 to V01L06NF0401,... High Unreviewed
CVE-2024-39921 was published Sep 4, 2024
An issue was discovered in LIVEBOX Collaboration vDesk through v031. An Observable Response... High Unreviewed
CVE-2022-45177 was published Feb 21, 2024
A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK... High Unreviewed
CVE-2023-5981 was published Nov 28, 2023
Mattermost versions 9.8.x <= 9.8.0, 9.7.x <= 9.7.4, 9.6.x <= 9.6.2 and 9.5.x <= 9.5.5, when... High Unreviewed
CVE-2024-39830 was published Jul 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database