Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
33
GitHub Actions
22
Go
2,121
Maven
5,000+
npm
3,783
NuGet
683
pip
3,465
Pub
12
RubyGems
893
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,211 advisories

Loading
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation... Low Unreviewed
CVE-2025-23074 was published Jan 14, 2025
Windows Smart Card Reader Information Disclosure Vulnerability Low Unreviewed
CVE-2025-21312 was published Jan 14, 2025
A use of hard-coded cryptographic key in Fortinet FortiClientWindows version 7.4.0, 7.2.x all... Low Unreviewed
CVE-2024-50564 was published Jan 14, 2025
A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 through 7.4.6, 7.2.0 through 7.2... Low Unreviewed
CVE-2024-52963 was published Jan 14, 2025
An improper neutralization of script-related html tags in a web page (basic xss) in Fortinet... Low Unreviewed
CVE-2024-52967 was published Jan 14, 2025
A improper neutralization of special elements used in an sql command ('sql injection') in... Low Unreviewed
CVE-2024-55593 was published Jan 14, 2025
An Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2... Low Unreviewed
CVE-2024-46669 was published Jan 14, 2025
An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7... Low Unreviewed
CVE-2024-46665 was published Jan 14, 2025
An improper verification of source of a communication channel vulnerability [CWE-940] in... Low Unreviewed
CVE-2024-36506 was published Jan 14, 2025
A vulnerability has been identified in Industrial Edge Management OS (IEM-OS) (All versions).... Low Unreviewed
CVE-2024-45385 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Low Unreviewed
CVE-2023-42240 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Low Unreviewed
CVE-2023-42239 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Low Unreviewed
CVE-2023-42242 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Low Unreviewed
CVE-2023-42238 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Low Unreviewed
CVE-2023-42241 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Low Unreviewed
CVE-2023-42235 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Low Unreviewed
CVE-2023-42236 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Low Unreviewed
CVE-2023-42237 was published Jan 14, 2025
HCL MyXalytics is affected by a cleartext transmission of sensitive information vulnerability. ... Low Unreviewed
CVE-2024-42181 was published Jan 13, 2025
HCL MyXalytics is affected by sensitive information disclosure vulnerability. The HTTP response... Low Unreviewed
CVE-2024-42179 was published Jan 13, 2025
HCL MyXalytics is affected by a malicious file upload vulnerability. The application accepts... Low Unreviewed
CVE-2024-42180 was published Jan 13, 2025
HCL MyXalytics is affected by a weak input validation vulnerability. The application accepts... Low Unreviewed
CVE-2024-42175 was published Jan 11, 2025
HCL MyXalytics is affected by username enumeration vulnerability. This allows a malicious user... Low Unreviewed
CVE-2024-42174 was published Jan 11, 2025
An issue was discovered in REDCap 14.9.6. It has an action=myprojects&logout=1 CSRF issue in the... Low Unreviewed
CVE-2025-23113 was published Jan 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Low Unreviewed
CVE-2024-13308 was published Jan 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database