GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
60 advisories
Filter by severity
It was identified that in certain versions of Octopus Server, that a user created with no...
Low
Unreviewed
CVE-2024-4226
was published
Apr 30, 2024
An issue was discovered in the installer in Samsung Magician 8.1.0 on Windows. An attacker can...
Low
Unreviewed
CVE-2024-53921
was published
Dec 3, 2024
HCL Connections is vulnerable to a broken access control vulnerability that may allow an...
Low
Unreviewed
CVE-2024-42188
was published
Nov 14, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition...
Low
Unreviewed
CVE-2024-21012
was published
Apr 17, 2024
Moodle has insufficient access control
Low
CVE-2024-43430
was published
for
moodle/moodle
(Composer)
Nov 11, 2024
Vulnerability in the Oracle Database Core component of Oracle Database Server. Supported...
Low
Unreviewed
CVE-2024-21123
was published
Jul 17, 2024
In Emacs before 29.3, LaTeX preview is enabled by default for e-mail attachments.
Low
Unreviewed
CVE-2024-30204
was published
Mar 25, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ...
Low
Unreviewed
CVE-2024-21002
was published
Apr 17, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ...
Low
Unreviewed
CVE-2024-21004
was published
Apr 17, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS...
Low
Unreviewed
CVE-2024-40792
was published
Oct 28, 2024
An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk®...
Low
Unreviewed
CVE-2024-6326
was published
Jul 16, 2024
Duplicate Advisory: Keycloak: Leak of configured LDAP bind credentials
Low
GHSA-gmrm-8fx4-66x7
was published
for
org.keycloak:keycloak-core
(Maven)
Jun 18, 2024
•
withdrawn
Insecure Permission vulnerability in Agasta Sanketlife 2.0 Pocket 12-Lead ECG Monitor FW Version...
Low
Unreviewed
CVE-2024-32368
was published
Apr 22, 2024
Keycloak leaks configured LDAP bind credentials through the Keycloak admin console
Low
CVE-2024-5967
was published
for
org.keycloak:keycloak-ldap-federation
(Maven)
Jun 21, 2024
All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an...
Low
Unreviewed
CVE-2019-14861
was published
May 24, 2022
atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel...
Low
Unreviewed
CVE-2019-17054
was published
May 24, 2022
Improper Knox ID validation logic in notification framework prior to SMR Jun-2023 Release 1...
Low
Unreviewed
CVE-2023-21512
was published
Jun 28, 2023
A vulnerability that stores IMSI values in an improper path prior to SMR APR-2021 Release 1...
Low
Unreviewed
CVE-2021-25358
was published
May 24, 2022
llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through...
Low
Unreviewed
CVE-2019-17056
was published
May 24, 2022
ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux...
Low
Unreviewed
CVE-2019-17053
was published
May 24, 2022
The Standard security setting for Mandrake-Security package (msec) in Mandrake 8.2 installs home...
Low
Unreviewed
CVE-2002-1713
was published
Apr 30, 2022
SilverCity before 0.9.5-r1 installs (1) cgi-styler-form.py, (2) cgi-styler.py, and (3)...
Low
Unreviewed
CVE-2005-1941
was published
May 1, 2022
A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with...
Low
Unreviewed
CVE-2021-3981
was published
Mar 11, 2022
Local privilege escalation due to insecure folder permissions. The following products are...
Low
Unreviewed
CVE-2023-44157
was published
Sep 27, 2023
Octopoller gem published with world-writable files
Low
CVE-2022-31071
was published
for
octopoller
(RubyGems)
Jun 15, 2022
ProTip!
Advisories are also available from the
GraphQL API