Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,996
Maven
5,000+
npm
3,709
NuGet
661
pip
3,349
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

11,100 advisories

Loading
cap-std doesn't fully sandbox all the Windows device filenames Low
CVE-2024-51756 was published for cap-async-std (Rust) Nov 5, 2024
nathaniel-daniel
Wasmtime doesn't fully sandbox all the Windows device filenames Low
CVE-2024-51745 was published for wasmtime (Rust) Nov 5, 2024
nathaniel-daniel
In the Linux kernel, the following vulnerability has been resolved: net: netconsole: fix wrong... Low Unreviewed
CVE-2024-50092 was published Nov 5, 2024
@workos-inc/authkit-remix refresh tokens are logged when the debug flag is enabled Low
CVE-2024-51753 was published for @workos-inc/authkit-remix (npm) Nov 5, 2024
@workos-inc/authkit-nextjs refresh tokens are logged when the debug flag is enabled Low
CVE-2024-51752 was published for @workos-inc/authkit-nextjs (npm) Nov 5, 2024
gitsign may use incorrect Rekor entries during verification Low
CVE-2024-51746 was published for github.com/sigstore/gitsign (Go) Nov 5, 2024
adityasaky
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through out-of-bounds... Low Unreviewed
CVE-2024-47402 was published Nov 5, 2024
LocalAI Cross-site Scripting vulnerability Low
CVE-2024-48057 was published for github.com/mudler/LocalAI (Go) Nov 5, 2024
Bad documentation of error handling in ParseWithClaims can lead to potentially dangerous situations Low
CVE-2024-51744 was published for github.com/golang-jwt/jwt/v4 (Go) Nov 4, 2024
yuligesec
Umbraco CMS Cross-site Scripting vulnerability Low
CVE-2024-10761 was published for Umbraco.Cms.Core (NuGet) Nov 4, 2024
A vulnerability, which was classified as problematic, has been found in Cosmote Greece What's Up... Low Unreviewed
CVE-2024-10748 was published Nov 4, 2024
A vulnerability, which was classified as critical, was found in ThinkAdmin up to 6.1.67. Affected... Low Unreviewed
CVE-2024-10749 was published Nov 4, 2024
When using Arm Cortex-M Security Extensions (CMSE), Secure stack contents can be leaked to Non... Low Unreviewed
CVE-2024-7883 was published Oct 31, 2024
A denial of service vulnerability exists in the Web Application functionality of LevelOne WBR... Low Unreviewed
CVE-2024-33623 was published Oct 30, 2024
The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path... Low Unreviewed
CVE-2024-10228 was published Oct 30, 2024
Grafana org admin can delete pending invites in different org Low
CVE-2024-10452 was published for github.com/grafana/grafana (Go) Oct 29, 2024
@langchain/community SQL Injection vulnerability Low
CVE-2024-7042 was published for @langchain/community (npm) Oct 29, 2024
Langchain SQL Injection vulnerability Low
CVE-2024-8309 was published for langchain (pip) Oct 29, 2024
BarrensZeppelin eyurtsev
efriis
Profile files from TRO600 series radios are extracted in plain-text and encrypted file formats.... Low Unreviewed
CVE-2024-41156 was published Oct 29, 2024
HCL Connections is vulnerable to an information disclosure vulnerability, due to an IBM WebSphere... Low Unreviewed
CVE-2024-30106 was published Oct 29, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7... Low Unreviewed
CVE-2024-44197 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Low Unreviewed
CVE-2024-44275 was published Oct 28, 2024
This issue was addressed through improved state management. This issue is fixed in iOS 18.1 and... Low Unreviewed
CVE-2024-44251 was published Oct 28, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed
CVE-2024-44222 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Low Unreviewed
CVE-2024-44267 was published Oct 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database