Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

42 advisories

Loading
Moodle admin presets export tool includes some secrets that should not be exported Low
CVE-2024-43427 was published for moodle/moodle (Composer) Nov 11, 2024
Certain Cypress (and Broadcom) Wireless Combo chips, when a January 2021 firmware update is not... Low Unreviewed
CVE-2020-10368 was published Nov 11, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed
CVE-2024-44222 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Low Unreviewed
CVE-2024-44275 was published Oct 28, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Low Unreviewed
CVE-2024-21211 was published Oct 15, 2024
HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could... Low Unreviewed
CVE-2024-30132 was published Oct 1, 2024
An issue was discovered in Infinera hiT 7300 5.60.50. Hidden functionality in the web interface... Low Unreviewed
CVE-2024-28808 was published Sep 30, 2024
Maven Archetype Plugin: Maven Archetype integration-test may package local settings into the published artifact, possibly containing credentials Low
CVE-2024-47197 was published for org.apache.maven.plugins:maven-archetype-plugin (Maven) Sep 26, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. An app... Low Unreviewed
CVE-2024-40832 was published Jul 30, 2024
udn News Android APP stores the unencrypted user session in the local database when user log into... Low Unreviewed
CVE-2024-6295 was published Jun 25, 2024
An issue in CmsEasy v.7.7 and before allows a remote attacker to obtain sensitive information via... Low Unreviewed
CVE-2024-32236 was published Apr 25, 2024
Apache Camel data exposure vulnerability Low
CVE-2024-22371 was published for org.apache.camel:camel-core (Maven) Feb 26, 2024
rsrikanth11
Sametime Connect desktop chat client includes, but does not use or require, the use of an Eclipse... Low Unreviewed
CVE-2023-37540 was published Feb 23, 2024
The issue was resolved by sanitizing logging This issue is fixed in watchOS 10.1, macOS Sonoma 14... Low Unreviewed
CVE-2023-42823 was published Feb 21, 2024
vantage6 may create unencrypted tasks in encrypted collaboration Low
CVE-2024-22193 was published for vantage6 (pip) Jan 30, 2024
HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower can sometimes include sensitive... Low Unreviewed
CVE-2023-37521 was published Jan 16, 2024
Some Honor products are affected by information leak vulnerability, successful exploitation... Low Unreviewed
CVE-2023-23437 was published Dec 29, 2023
Default permissions for a properties file were too permissive. Local system users could read... Low Unreviewed
CVE-2023-26427 was published Jun 20, 2023
Logins saved by Firefox should be managed by the Password Manager component which uses encryption... Low Unreviewed
CVE-2022-42931 was published Dec 22, 2022
IBM Sterling Partner Engagement Manager 2.0 allows encrypted storage of client data to be stored... Low Unreviewed
CVE-2022-34354 was published Nov 16, 2022
IBM CICS TX 11.1 allows web pages to be stored locally which can be read by another user on the... Low Unreviewed
CVE-2022-34312 was published Nov 14, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the... Low Unreviewed
CVE-2020-4805 was published May 24, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the... Low Unreviewed
CVE-2020-4803 was published May 24, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the... Low Unreviewed
CVE-2020-4809 was published May 24, 2022
IBM QRadar Analyst Workflow App 1.0 through 1.18.0 for IBM QRadar SIEM allows web pages to be... Low Unreviewed
CVE-2021-20396 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database