Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

155 advisories

Loading
A vulnerability has been identified in SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0), SCALANCE W1748... Moderate Unreviewed
CVE-2024-30190 was published Apr 9, 2024
Apache Zeppelin: Replacing other users notebook, bypassing any permissions Moderate
CVE-2024-31863 was published for org.apache.zeppelin:zeppelin-server (Maven) Apr 9, 2024
HCL DevOps Deploy / HCL Launch does not invalidate session after logout which could allow an... Moderate Unreviewed
CVE-2024-23558 was published Apr 15, 2024
An issue in Typora v.1.8.10 and before, allows a local attacker to obtain sensitive information... Moderate Unreviewed
CVE-2024-31784 was published Apr 16, 2024
Insufficient data validation in Downloads in Google Chrome prior to 124.0.6367.60 allowed a... Moderate Unreviewed
CVE-2024-3843 was published Apr 17, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions... Moderate Unreviewed
CVE-2024-1347 was published Apr 25, 2024
TP-Link TL-WR902AC loginFs Improper Authentication Information Disclosure Vulnerability. This... Moderate Unreviewed
CVE-2023-44447 was published May 3, 2024
TP-Link TL-WR841N dropbearpwd Improper Authentication Information Disclosure Vulnerability. This... Moderate Unreviewed
CVE-2023-50224 was published May 3, 2024
IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 is vulnerable to external service interaction... Moderate Unreviewed
CVE-2022-22364 was published May 3, 2024
An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a... Moderate Unreviewed
CVE-2024-34397 was published May 7, 2024
Authentication Bypass by Spoofing vulnerability in LionScripts IP Blocker Lite allows... Moderate Unreviewed
CVE-2024-30479 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in WPMU DEV Defender Security allows... Moderate Unreviewed
CVE-2024-25595 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in Stefano Lissa & The Newsletter Team Newsletter... Moderate Unreviewed
CVE-2024-30522 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in Wpmet Wp Ultimate Review allows Functionality... Moderate Unreviewed
CVE-2024-21746 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in WP Happy Coders Comments Like Dislike allows... Moderate Unreviewed
CVE-2024-25906 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in webtechideas WTI Like Post allows... Moderate Unreviewed
CVE-2024-33917 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in RafflePress Giveaways and Contests allows... Moderate Unreviewed
CVE-2024-32827 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in WP Royal Royal Elementor Addons allows... Moderate Unreviewed
CVE-2024-32786 was published May 17, 2024
Multiple Cisco products are affected by a vulnerability in the Snort Intrusion Prevention System ... Moderate Unreviewed
CVE-2024-20363 was published May 22, 2024
Authentication Bypass by Spoofing vulnerability in IP2Location Download IP2Location Country... Moderate Unreviewed
CVE-2023-37865 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in pluginkollektiv Antispam Bee allows Accessing... Moderate Unreviewed
CVE-2023-41134 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in yonifre Maspik – Spam blacklist allows... Moderate Unreviewed
CVE-2023-48271 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in 10up Restricted Site Access allows Accessing... Moderate Unreviewed
CVE-2023-48753 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in WPMU DEV Branda allows Accessing Functionality... Moderate Unreviewed
CVE-2023-51542 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in Metagauss RegistrationMagic allows Accessing... Moderate Unreviewed
CVE-2023-51543 was published Jun 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database