GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,070
Composer 4,319
Erlang 31
GitHub Actions 21
Go 2,077
Maven 5,250
npm 3,746
NuGet 674
pip 3,435
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,247

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

249 advisories

Filter by severity

Sort by

Least recently updated

An issue has been discovered in GitLab CE/EE affecting all versions from 16.1 prior to 16.1.6, 16... Critical Unreviewed

CVE-2023-7028 was published Jan 12, 2024

Totolink N200RE_V5 V9.3.5u.6255_B20211224 is vulnerable to Incorrect Access Control. The device... Critical Unreviewed

CVE-2022-46025 was published Jan 10, 2024

EuroTel ETL3100 versions v01c01 and v01x37 suffer from an unauthenticated configuration... Critical Unreviewed

CVE-2023-6930 was published Dec 20, 2023

An improper access control vulnerability exists in RT-AC87U all versions. An attacker may read or... Critical Unreviewed

CVE-2023-47678 was published Nov 15, 2023

A vulnerability has been identified in COMOS (All versions). The affected application lacks... Critical Unreviewed

CVE-2023-43505 was published Nov 14, 2023

A vulnerability has been identified in COMOS (All versions). The affected application lacks... Critical Unreviewed

CVE-2023-46601 was published Nov 14, 2023

SAP Business One installation - version 10.0, does not perform proper authentication and... Critical Unreviewed

CVE-2023-31403 was published Nov 14, 2023

An issue in BoltWire v.6.03 allows a remote attacker to obtain sensitive information via a... Critical Unreviewed

CVE-2023-46501 was published Nov 7, 2023

Sielco PolyEco1000 is vulnerable to an authentication bypass vulnerability due... Critical Unreviewed

CVE-2023-46665 was published Oct 26, 2023

Sielco PolyEco1000 is vulnerable to an improper access control vulnerability when... Critical Unreviewed

CVE-2023-46664 was published Oct 26, 2023

Sielco PolyEco1000 is vulnerable to an attacker escalating their privileges by modifying... Critical Unreviewed

CVE-2023-46661 was published Oct 26, 2023

The cookie session ID is of insufficient length and can be exploited by brute force, which may... Critical Unreviewed

CVE-2023-42769 was published Oct 26, 2023

Instances of UniFi Network Application that (i) are run on a UniFi Gateway Console, and (ii) are... Critical Unreviewed

CVE-2023-41721 was published Oct 25, 2023

An Access Control issue discovered in Extreme Networks Switch Engine (EXOS) before 32.5.1.5, also... Critical Unreviewed

CVE-2023-43119 was published Oct 16, 2023

A command execution vulnerability exists in the validate.so diag_ping_start functionality of... Critical Unreviewed

CVE-2023-32632 was published Oct 11, 2023

An authentication bypass vulnerability exists in the httpd nvram.cgi functionality of Yifan YF325... Critical Unreviewed

CVE-2023-24479 was published Oct 11, 2023

Vulnerability of undefined permissions in the MeeTime module.Successful exploitation of this... Critical Unreviewed

CVE-2023-44118 was published Oct 11, 2023

An improper access control vulnerability [CWE-284] in FortiManager management interface 7.2.0... Critical Unreviewed

CVE-2023-41679 was published Oct 10, 2023

HP LIFE Android Mobile application is potentially vulnerable to escalation of privilege and/or... Critical Unreviewed

CVE-2023-5365 was published Oct 9, 2023

Improper Access Control in SICK APU allows an unprivileged remote attacker to download as well... Critical Unreviewed

CVE-2023-43696 was published Oct 9, 2023

A remote unauthorized attacker may connect to the SIM1012, interact with the device and change... Critical Unreviewed

CVE-2023-5288 was published Sep 29, 2023

TOTOLINK A3700R V9.1.2u.6134_B20201202 and N600R V5.3c.5137 are vulnerable to Incorrect Access... Critical Unreviewed

CVE-2023-43141 was published Sep 25, 2023

** UNSUPPPORTED WHEN ASSIGNED ** Devices ekorCCP and ekorRCI are vulnerable due to access to the... Critical Unreviewed

CVE-2022-47558 was published Sep 19, 2023

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.2... Critical Unreviewed

CVE-2023-5009 was published Sep 19, 2023

An issue was discovered on ARRIS TG852G, TG862G, and TG1672G devices. A remote attacker (in... Critical Unreviewed

CVE-2023-40039 was published Sep 11, 2023

Previous 1 2 3 4 5 6 … 9 10 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

249 advisories