GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,632
Composer 4,226
Erlang 31
GitHub Actions 19
Go 1,991
Maven 5,177
npm 3,708
NuGet 661
pip 3,341
Pub 11
RubyGems 884
Rust 846
Swift 36

Unreviewed advisories

All unreviewed 234,549

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

51 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All... High Unreviewed

CVE-2024-30206 was published May 14, 2024

LuckyFrameWeb v3.5.2 was discovered to contain an arbitrary read vulnerability via the... High Unreviewed

CVE-2024-33118 was published May 6, 2024

Inductive Automation Ignition downloadLaunchClientJar Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2023-39474 was published May 3, 2024

An issue in the com.oneed.dvr.service.DownloadFirmwareService component of IMOU GO v1.0.11 allows... High Unreviewed

CVE-2023-47353 was published Feb 6, 2024

Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT classic line PLCs... High Unreviewed

CVE-2023-46143 was published Dec 14, 2023

Download of Code Without Integrity Check vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX... High Unreviewed

CVE-2023-5592 was published Dec 14, 2023

A download of code without integrity check vulnerability in PLCnext products allows an remote... High Unreviewed

CVE-2023-46144 was published Dec 14, 2023

A data integrity vulnerability exists in the BR_NO_CHECK_HASH_FOR functionality of Buildroot 2023... High Unreviewed

CVE-2023-43608 was published Dec 5, 2023

Multiple data integrity vulnerabilities exist in the package hash checking functionality of... High Unreviewed

CVE-2023-45841 was published Dec 5, 2023

Multiple data integrity vulnerabilities exist in the package hash checking functionality of... High Unreviewed

CVE-2023-45840 was published Dec 5, 2023

Multiple data integrity vulnerabilities exist in the package hash checking functionality of... High Unreviewed

CVE-2023-45842 was published Dec 5, 2023

Multiple data integrity vulnerabilities exist in the package hash checking functionality of... High Unreviewed

CVE-2023-45838 was published Dec 5, 2023

Multiple data integrity vulnerabilities exist in the package hash checking functionality of... High Unreviewed

CVE-2023-45839 was published Dec 5, 2023

In Dreamer CMS before 4.0.1, the backend attachment management office has an Arbitrary File... High Unreviewed

CVE-2023-46887 was published Nov 29, 2023

A CWE-494 Download of Code Without Integrity Check vulnerability exists that could allow... High Unreviewed

CVE-2023-5984 was published Nov 15, 2023

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with... High Unreviewed

CVE-2023-37864 was published Aug 9, 2023

A download of code without Integrity check vulnerability [CWE-494] in FortiClientMac version 7.0... High Unreviewed

CVE-2023-22635 was published Apr 11, 2023

An exploitable firmware modification vulnerability was discovered in WNR612v2 Wireless Routers... High Unreviewed

CVE-2023-23110 was published Feb 2, 2023

Data Integrity Failure in 'Backup Config' in D-Link DNR-322L <= 2.60B15 allows an authenticated... High Unreviewed

CVE-2022-40799 was published Nov 29, 2022

Novel-Plus v3.6.2 was discovered to contain an arbitrary file download vulnerability via the... High Unreviewed

CVE-2022-36671 was published Sep 2, 2022

An arbitrary file download vulnerability in Oliver v5 Library Server Versions < 5.00.008.053 via... High Unreviewed

CVE-2021-45027 was published Sep 2, 2022

A vulnerability exists in the file upload validation part of Hitachi Energy TXpert Hub CoreTec 4... High Unreviewed

CVE-2021-35532 was published Jun 8, 2022

Caphyon Ltd Advanced Installer 19.2 was discovered to contain a remote code execution (RCE)... High Unreviewed

CVE-2022-27438 was published Jun 7, 2022

A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on... High Unreviewed

CVE-2020-28213 was published May 24, 2022

DEXT5 Upload 5.0.0.117 and earlier versions contain a vulnerability, which could allow remote... High Unreviewed

CVE-2020-7875 was published May 24, 2022

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

51 advisories