GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,070
Composer 4,319
Erlang 31
GitHub Actions 21
Go 2,077
Maven 5,250
npm 3,746
NuGet 674
pip 3,435
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,285

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

233 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.80), SIPROTEC... High Unreviewed

CVE-2024-53649 was published Jan 14, 2025

Specially constructed queries targeting ETM could discover active remote access sessions Moderate Unreviewed

CVE-2024-47518 was published Jan 11, 2025

The CGI script <redacted>.sh can be used to download any file on the filesystem. This issue... High Unreviewed

CVE-2024-43660 was published Jan 9, 2025

A widget local file inclusion vulnerability in Trend Micro Apex One could allow a remote attacker... High Unreviewed

CVE-2024-52047 was published Dec 31, 2024

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation... High Unreviewed

CVE-2024-50627 was published Dec 10, 2024

Configuration Download vulnerabilities allow access to dependency configuration information. ... High Unreviewed

CVE-2024-51542 was published Dec 5, 2024

A directory traversal vulnerability in Hewlett Packard Enterprise Insight Remote Support may... Critical Unreviewed

CVE-2024-53676 was published Nov 27, 2024

Local File Inclusion vulnerability in M-Files Server in versions before 24.11 (excluding 24.8 SR1... Moderate Unreviewed

CVE-2024-10126 was published Nov 20, 2024

A vulnerability in Cisco IND could allow an authenticated, local attacker to read application... Moderate Unreviewed

CVE-2023-20039 was published Nov 15, 2024

Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway... Moderate Unreviewed

CVE-2024-8535 was published Nov 12, 2024

Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a... Low Unreviewed

CVE-2024-48838 was published Nov 12, 2024

Rapid7 Velociraptor MSI Installer versions below 0.73.3 suffer from a vulnerability whereby it... High Unreviewed

CVE-2024-10526 was published Nov 7, 2024

A file disclosure vulnerability exists in Sage 1000 v7.0.0. This vulnerability allows remote... High Unreviewed

CVE-2024-48647 was published Oct 30, 2024

An unauthenticated remote attacker can get read access to files in the "/tmp" directory due to... High Unreviewed

CVE-2024-45276 was published Oct 15, 2024

A directory listing issue in the baserCMS plugin in D-ZERO CO., LTD. BurgerEditor and... Moderate Unreviewed

CVE-2024-44807 was published Oct 11, 2024

BlueCMS 1.6 suffers from Arbitrary File Deletion via the file_name parameter in an /admin... Moderate Unreviewed

CVE-2024-45894 was published Oct 7, 2024

Files or Directories Accessible to External Parties vulnerability in National Keep Cyber Security... Moderate Unreviewed

CVE-2024-7107 was published Sep 26, 2024

Files or Directories Accessible to External Parties vulnerability in Eliz Software Panel allows... Critical Unreviewed

CVE-2024-6878 was published Sep 18, 2024

A vulnerability was found in Mercury MNVR816 up to 2.0.1.0.5. It has been classified as... Moderate Unreviewed

CVE-2024-8655 was published Sep 10, 2024

Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a File or Directories Accessible to... High Unreviewed

CVE-2024-39581 was published Sep 10, 2024

cgi-bin/fdmcgiwebv2.cgi on Swissphone DiCal-RED 4009 devices allows an authenticated attacker to... High Unreviewed

CVE-2024-36442 was published Aug 22, 2024

Priority – CWE-552: Files or Directories Accessible to External Parties Moderate Unreviewed

CVE-2024-41699 was published Aug 20, 2024

The CAYIN Technology CMS lacks proper access control, allowing unauthenticated remote attackers... High Unreviewed

CVE-2024-7729 was published Aug 14, 2024

An unauthenticated remote attacker can use this vulnerability to change the device configuration... High Unreviewed

CVE-2024-3913 was published Aug 13, 2024

A vulnerability has been identified in Omnivise T3000 Application Server (All versions >= R9.2),... High Unreviewed

CVE-2024-38876 was published Aug 2, 2024

Previous 1 2 3 4 5 … 9 10 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

233 advisories