GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,085
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,084
Maven 5,251
npm 3,747
NuGet 674
pip 3,436
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,541

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

52 advisories

Filter by severity

Sort by

Least recently updated

In Emacs before 29.3, Org mode considers contents of remote files to be trusted. This affects Org... High Unreviewed

CVE-2024-30205 was published Mar 25, 2024

A download of code without integrity check vulnerability in the "execute restore src-vis" command... High Unreviewed

CVE-2021-44168 was published Jan 5, 2022

A download of code without integrity check vulnerability in PLCnext products allows an remote... High Unreviewed

CVE-2023-46144 was published Dec 14, 2023

LuckyFrameWeb v3.5.2 was discovered to contain an arbitrary read vulnerability via the... High Unreviewed

CVE-2024-33118 was published May 6, 2024

A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All... High Unreviewed

CVE-2024-30206 was published May 14, 2024

Inductive Automation Ignition downloadLaunchClientJar Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2023-39474 was published May 3, 2024

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with... High Unreviewed

CVE-2023-37864 was published Aug 9, 2023

A download of code without Integrity check vulnerability [CWE-494] in FortiClientMac version 7.0... High Unreviewed

CVE-2023-22635 was published Apr 11, 2023

An issue was discovered in WeeChat before 2.7.1 (0.4.0 to 2.7 are affected). A malformed message... High Unreviewed

CVE-2020-9759 was published May 24, 2022

RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below insufficiently validate where... High Unreviewed

CVE-2019-3977 was published May 24, 2022

Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN... High Unreviewed

CVE-2019-13534 was published May 24, 2022

Yes24ViewerX ActiveX Control 1.0.327.50126 and earlier versions contains a vulnerability that... High Unreviewed

CVE-2019-12809 was published May 24, 2022

The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware image. Development... High Unreviewed

CVE-2019-9534 was published May 24, 2022

Apple Mac OS X does not properly verify the authenticity of updates, which allows man-in-the... High Unreviewed

CVE-2008-3438 was published May 2, 2022

An issue in the com.oneed.dvr.service.DownloadFirmwareService component of IMOU GO v1.0.11 allows... High Unreviewed

CVE-2023-47353 was published Feb 6, 2024

Symantec LiveUpdate before 1.6 does not use cryptography to ensure the integrity of download... High Unreviewed

CVE-2001-1125 was published Apr 30, 2022

Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 downloads phone applications... High Unreviewed

CVE-2002-0671 was published Apr 30, 2022

The PartyGaming PartyPoker client program 121/120 does not properly verify the authenticity of... High Unreviewed

CVE-2008-3324 was published May 1, 2022

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to... High Unreviewed

CVE-2020-1453 was published May 24, 2022

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to... High Unreviewed

CVE-2020-1452 was published May 24, 2022

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to... High Unreviewed

CVE-2020-1200 was published May 24, 2022

Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX... High Unreviewed

CVE-2023-5592 was published Dec 14, 2023

Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT classic line PLCs... High Unreviewed

CVE-2023-46143 was published Dec 14, 2023

Multiple data integrity vulnerabilities exist in the package hash checking functionality of... High Unreviewed

CVE-2023-45840 was published Dec 5, 2023

Multiple data integrity vulnerabilities exist in the package hash checking functionality of... High Unreviewed

CVE-2023-45842 was published Dec 5, 2023

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

52 advisories