Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

121,358 advisories

Loading
httplib2 incorrectly checks SSL certificate Moderate
CVE-2013-2037 was published for httplib2 (pip) May 14, 2022
Improper Neutralization of Input During Web Page Generation in IPython Moderate
CVE-2015-4707 was published for ipython (pip) May 13, 2022
Cross-site scripting invenio-records Moderate
CVE-2019-1020003 was published for invenio-records (pip) Jul 16, 2019
Permissions not properly checked in Invenio-Drafts-Resources Moderate
CVE-2021-43781 was published for invenio-app-rdm (pip) Dec 6, 2021
lnielsen
Invenio-App vulnerable to host header injection attack Moderate
CVE-2019-1020006 was published for invenio-app (pip) Jul 16, 2019
eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via edit_file. Moderate Unreviewed
CVE-2024-46644 was published Sep 20, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart: Fix... Moderate Unreviewed
CVE-2024-46680 was published Sep 13, 2024
eNMS up to 4.7.1 is vulnerable to Directory Traversal via /download/file. Moderate Unreviewed
CVE-2024-46646 was published Sep 20, 2024
In the Linux kernel, the following vulnerability has been resolved: bonding: change ipsec_lock... Moderate Unreviewed
CVE-2024-46678 was published Sep 13, 2024
In the Linux kernel, the following vulnerability has been resolved: ethtool: check device is... Moderate Unreviewed
CVE-2024-46679 was published Sep 13, 2024
eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via upload_files. Moderate Unreviewed
CVE-2024-46647 was published Sep 20, 2024
Sony XAV-AX5500 Insufficient Firmware Update Validation Remote Code Execution Vulnerability. This... Moderate Unreviewed
CVE-2024-23922 was published Sep 23, 2024
Sony XAV-AX5500 USB Configuration Descriptor Buffer Overflow Remote Code Execution Vulnerability.... Moderate Unreviewed
CVE-2024-23972 was published Sep 23, 2024
In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Add poll mod... Moderate Unreviewed
CVE-2024-46676 was published Sep 13, 2024
A flaw exists in FlashArray Purity wherein under limited circumstances, an array administrator... Moderate Unreviewed
CVE-2023-32572 was published Oct 3, 2023
Improper Input Validation vulnerability in Hitachi Energy MicroSCADA X SYS600 while reading a... Moderate Unreviewed
CVE-2022-1778 was published Sep 15, 2022
Local active protection service settings manipulation due to unnecessary privileges assignment.... Moderate Unreviewed
CVE-2024-8903 was published Sep 23, 2024
Xiaomi Router AX9000 has a post-authorization command injection vulnerability. This vulnerability... Moderate Unreviewed
CVE-2024-45348 was published Sep 23, 2024
A vulnerability was found in SourceCodester Profile Registration without Reload Refresh 1.0. It... Moderate Unreviewed
CVE-2024-9092 was published Sep 23, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-43996 was published Sep 23, 2024
A vulnerability classified as critical was found in code-projects Blood Bank System 1.0. This... Moderate Unreviewed
CVE-2024-9094 was published Sep 23, 2024
A vulnerability classified as critical has been found in SourceCodester Profile Registration... Moderate Unreviewed
CVE-2024-9093 was published Sep 23, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-44048 was published Sep 23, 2024
A vulnerability was found in SourceCodester Modern Loan Management System 1.0. It has been... Moderate Unreviewed
CVE-2024-9090 was published Sep 23, 2024
A vulnerability was found in code-projects Student Record System 1.0. It has been declared as... Moderate Unreviewed
CVE-2024-9091 was published Sep 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database