GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
123 advisories
Filter by severity
A vulnerability in the Network Service Group (NSG) feature of Cisco Adaptive Security Appliance ...
Moderate
Unreviewed
CVE-2024-20384
was published
Oct 23, 2024
A vulnerability in the AnyConnect firewall for Cisco Adaptive Security Appliance (ASA) Software...
Moderate
Unreviewed
CVE-2024-20299
was published
Oct 23, 2024
A vulnerability in the AnyConnect firewall for Cisco Adaptive Security Appliance (ASA) Software...
Moderate
Unreviewed
CVE-2024-20297
was published
Oct 23, 2024
QUIC in HAProxy 3.1.x before 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11 allows opening...
Moderate
Unreviewed
CVE-2024-49214
was published
Oct 14, 2024
Entrust Instant Financial Issuance (On Premise) Software (formerly known as Cardwizard) 6.10.0, 6...
Moderate
Unreviewed
CVE-2024-39341
was published
Sep 23, 2024
If a site had been granted the permission to open popup windows, it could cause Select elements...
Moderate
Unreviewed
CVE-2024-8386
was published
Sep 3, 2024
In WS_FTP Server versions before 8.8.8 (2022.0.8), a Missing Critical Step in Multi-Factor...
Moderate
Unreviewed
CVE-2024-7745
was published
Aug 28, 2024
Typecho v1.3.0 was discovered to contain a race condition vulnerability in the post commenting...
Moderate
Unreviewed
CVE-2024-35539
was published
Aug 19, 2024
Typecho v1.3.0 was discovered to contain a Client IP Spoofing vulnerability, which allows...
Moderate
Unreviewed
CVE-2024-35538
was published
Aug 19, 2024
An IP Spoofing vulnerability has been discovered in Likeshop up to 2.5.7.20210811. This issue...
Moderate
Unreviewed
CVE-2024-41432
was published
Aug 7, 2024
This issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4. A...
Moderate
Unreviewed
CVE-2024-27853
was published
Jul 30, 2024
Authentication Bypass by Spoofing vulnerability in Patreon Patreon WordPress allows Functionality...
Moderate
Unreviewed
CVE-2024-37430
was published
Jul 9, 2024
Certain http endpoints of Checkmk in Checkmk < 2.3.0p10 < 2.2.0p31, < 2.1.0p46, <= 2.0.0p39...
Moderate
Unreviewed
CVE-2024-6163
was published
Jul 8, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability
Moderate
Unreviewed
CVE-2024-30058
was published
Jun 13, 2024
Authentication Bypass by Spoofing vulnerability in FeedbackWP Rate my Post – WP Rating System...
Moderate
Unreviewed
CVE-2023-51667
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in miniorange Malware Scanner allows Accessing...
Moderate
Unreviewed
CVE-2023-52176
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in WPMU DEV Branda allows Accessing Functionality...
Moderate
Unreviewed
CVE-2023-51542
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in Metagauss RegistrationMagic allows Accessing...
Moderate
Unreviewed
CVE-2023-51543
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in 10up Restricted Site Access allows Accessing...
Moderate
Unreviewed
CVE-2023-48753
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in yonifre Maspik – Spam blacklist allows...
Moderate
Unreviewed
CVE-2023-48271
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in pluginkollektiv Antispam Bee allows Accessing...
Moderate
Unreviewed
CVE-2023-41134
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in IP2Location Download IP2Location Country...
Moderate
Unreviewed
CVE-2023-37865
was published
Jun 4, 2024
Multiple Cisco products are affected by a vulnerability in the Snort Intrusion Prevention System ...
Moderate
Unreviewed
CVE-2024-20363
was published
May 22, 2024
Authentication Bypass by Spoofing vulnerability in RafflePress Giveaways and Contests allows...
Moderate
Unreviewed
CVE-2024-32827
was published
May 17, 2024
Authentication Bypass by Spoofing vulnerability in WP Royal Royal Elementor Addons allows...
Moderate
Unreviewed
CVE-2024-32786
was published
May 17, 2024
ProTip!
Advisories are also available from the
GraphQL API