GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,123
Composer 4,331
Erlang 31
GitHub Actions 21
Go 2,093
Maven 5,256
npm 3,756
NuGet 678
pip 3,443
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,198

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

95,049 advisories

Filter by severity

Sort by

Least recently updated

In setActualDefaultRingtoneUri of RingtoneManager.java, there is a possible way to bypass content... High Unreviewed

CVE-2023-40132 was published Jan 22, 2025

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)... High Unreviewed

CVE-2025-21549 was published Jan 21, 2025

In multiple functions of CompanionDeviceManagerService.java, there is a possible way to grant... High Unreviewed

CVE-2024-49732 was published Jan 22, 2025

In multiple locations, there is a possible way to obtain any system permission due to a logic... High Unreviewed

CVE-2024-43095 was published Jan 22, 2025

In multiple locations, there is a possible failure to persist permissions settings due to... High Unreviewed

CVE-2024-49735 was published Jan 22, 2025

In multiple functions of ConnectivityService.java, there is a possible way for a Wi-Fi AP to... High Unreviewed

CVE-2024-49734 was published Jan 22, 2025

In gatts_process_find_info of gatt_sr.cc, there is a possible out of bounds write due to a... High Unreviewed

CVE-2024-43770 was published Jan 22, 2025

In multiple functions of AccountManagerService.java, there is a possible way to bypass... High Unreviewed

CVE-2024-49724 was published Jan 22, 2025

JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the... High Unreviewed

CVE-2024-57769 was published Jan 16, 2025

A vulnerability was found in Tenda FH1203 2.0.1.6 and classified as critical. This issue affects... High Unreviewed

CVE-2024-2992 was published Mar 27, 2024

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Directory... High Unreviewed

CVE-2024-1974 was published Apr 9, 2024

The Tutor LMS Pro plugin for WordPress is vulnerable to unauthorized access of data, modification... High Unreviewed

CVE-2024-4222 was published May 16, 2024

A vulnerability was found in Tenda AC7 15.03.06.44. It has been declared as critical. This... High Unreviewed

CVE-2024-2895 was published Mar 26, 2024

A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. This issue... High Unreviewed

CVE-2024-2581 was published Mar 18, 2024

A vulnerability was found in Tenda AC7 15.03.06.44 and classified as critical. Affected by this... High Unreviewed

CVE-2024-2893 was published Mar 26, 2024

The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request... High Unreviewed

CVE-2024-2395 was published Mar 13, 2024

A vulnerability was found in Tenda AC7 15.03.06.44. It has been classified as critical. This... High Unreviewed

CVE-2024-2894 was published Mar 26, 2024

Relative Path Traversal vulnerability in Webangon The Pack Elementor addons allows PHP Local File... High Unreviewed

CVE-2024-50453 was published Oct 28, 2024

A vulnerability was found in Tenda AC7 15.03.06.44. It has been classified as critical. Affected... High Unreviewed

CVE-2024-2903 was published Mar 26, 2024

A vulnerability was found in Tenda AC7 15.03.06.44 and classified as critical. This issue affects... High Unreviewed

CVE-2024-2902 was published Mar 26, 2024

Memory safety bugs present in Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10. Some of... High Unreviewed

CVE-2024-4777 was published May 14, 2024

HTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and... High Unreviewed

CVE-2015-1635 was published May 14, 2022

(1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics... High Unreviewed

CVE-2015-2291 was published May 17, 2022

PrinterLogic Windows Client through 25.0.0.676 allows attackers to execute directory traversal.... High Unreviewed

CVE-2022-32427 was published Aug 26, 2022

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2... High Unreviewed

CVE-2024-31903 was published Jan 22, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

95,049 advisories