GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,490

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

855 advisories

Filter by severity

Sort by

Least recently updated

An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated... Critical Unreviewed

CVE-2024-0012 was published Nov 18, 2024

The administrative interface listens by default on all interfaces on a TCP port and does not... Critical Unreviewed

CVE-2024-47138 was published Nov 23, 2024

Logsign Unified SecOps Platform Missing Authentication Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2024-5718 was published Nov 22, 2024

Logsign Unified SecOps Platform Missing Authentication Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2024-5721 was published Nov 22, 2024

A missing authentication for critical function vulnerability has been reported to affect Notes... Critical Unreviewed

CVE-2024-38643 was published Nov 22, 2024

A vulnerability was discovered in the firmware builds after 8.0.2.3267 and prior to 8.1.3.1301 in... High Unreviewed

CVE-2024-3281 was published Apr 9, 2024

The Really Simple Security (Free, Pro, and Pro Multisite) plugins for WordPress are vulnerable to... Critical Unreviewed

CVE-2024-10924 was published Nov 15, 2024

Missing Authentication for Critical Function vulnerability in Saul Morales Pacheco Banner System... High Unreviewed

CVE-2024-52437 was published Nov 20, 2024

Missing Authentication for Critical Function vulnerability in deco.Agency de:branding allows... High Unreviewed

CVE-2024-52438 was published Nov 20, 2024

Missing authentication for critical function vulnerability exists in Rakuten Turbo 5G firmware... Moderate Unreviewed

CVE-2024-47865 was published Nov 20, 2024

A low privileged remote attacker may modify the docker settings setup of the device, leading to a... Moderate Unreviewed

CVE-2024-41968 was published Nov 18, 2024

A low privileged remote attacker may modify the configuration of the CODESYS V3 service through a... High Unreviewed

CVE-2024-41969 was published Nov 18, 2024

A low privileged remote attacker may modify the boot mode configuration setup of the device,... High Unreviewed

CVE-2024-41967 was published Nov 18, 2024

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite (component: GL... High Unreviewed

CVE-2024-21146 was published Jul 17, 2024

The software tools used by service personnel to test & calibrate the ventilator do not support... Critical Unreviewed

CVE-2024-48966 was published Nov 15, 2024

Insufficient Verification of Data Authenticity vulnerability in Mitsubishi Electric Corporation... Critical Unreviewed

CVE-2023-4699 was published Nov 6, 2023

Incorrect access control in the fingerprint authentication mechanism of Bitdefender Mobile... Low Unreviewed

CVE-2024-31684 was published Jun 3, 2024

A missing authentication for critical function in Fortinet FortiManager version 7.4.0 through 7.4... Moderate Unreviewed

CVE-2024-26011 was published Nov 12, 2024

The vulnerability allows an attacker to bypass the authentication requirements for a specific PAM... Moderate Unreviewed

CVE-2024-36457 was published Jul 15, 2024

The web administration server in Solar-Log 500 before 2.8.2 Build 52 does not require... High Unreviewed

CVE-2021-34543 was published Dec 8, 2021

upgrademysqlstatus in databases/views.py in CyberPanel (aka Cyber Panel) before 5b08cd6 allows... Critical Unreviewed

CVE-2024-51567 was published Oct 30, 2024

Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an... Critical Unreviewed

CVE-2024-5910 was published Jul 10, 2024

An unauthenticated attacker with access to the local network of the medical office can query an... High Unreviewed

CVE-2024-50589 was published Nov 8, 2024

An issue was discovered in Logpoint before 7.5.0. Endpoints for creating, editing, or deleting... High Unreviewed

CVE-2024-48953 was published Nov 7, 2024

An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup... High Unreviewed

CVE-2024-48950 was published Nov 7, 2024

Previous 1 2 3 4 5 … 34 35 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

855 advisories