GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,046
Maven
5,000+
npm
3,737
NuGet
663
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
541 advisories
Filter by severity
Meross MSH30Q 4.5.23 is vulnerable to Cleartext Transmission of Sensitive Information. During the...
Moderate
Unreviewed
CVE-2023-46889
was published
Jan 23, 2024
Cleartext Transmission during initial setup in Shelly TRV 20220811-15234 v.2.1.8 allows a local...
Moderate
Unreviewed
CVE-2023-42144
was published
Jan 23, 2024
The POPS! Rebel application 5.0 for Android, in POPS! Rebel Bluetooth Glucose Monitoring System,...
Moderate
Unreviewed
CVE-2023-46447
was published
Jan 20, 2024
An issue discovereed in EBYTE E880-IR01-V1.1 allows an attacker to obtain sensitive information...
High
Unreviewed
CVE-2023-50614
was published
Jan 19, 2024
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to transmission of...
High
Unreviewed
CVE-2023-51740
was published
Jan 17, 2024
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to transmission of...
High
Unreviewed
CVE-2023-51741
was published
Jan 17, 2024
Microsoft.Data.SqlClient and System.Data.SqlClient vulnerable to SQL Data Provider Security Feature Bypass
High
CVE-2024-0056
was published
for
Microsoft.Data.SqlClient
(NuGet)
Jan 9, 2024
A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior...
Moderate
Unreviewed
CVE-2023-6094
was published
Dec 31, 2023
An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718),...
High
Unreviewed
CVE-2023-31300
was published
Dec 29, 2023
Incorrect access control in TP-Link Tapo before v3.1.315 allows attackers to access user...
Moderate
Unreviewed
CVE-2023-34829
was published
Dec 28, 2023
An issue was discovered in Stormshield Network Security (SNS) before 4.3.17, 4.4.x through 4.6.x...
High
Unreviewed
CVE-2023-28616
was published
Dec 26, 2023
An attacker with network access could perform a man-in-the-middle (MitM) attack and capture...
Moderate
Unreviewed
CVE-2023-50703
was published
Dec 20, 2023
The affected devices transmit sensitive information unencrypted allowing a remote unauthenticated...
Critical
Unreviewed
CVE-2023-39172
was published
Dec 7, 2023
On affected platforms running Arista MOS, the configuration of a BGP password will cause the...
Moderate
Unreviewed
CVE-2023-24547
was published
Dec 6, 2023
Improper usage of insecure protocol (i.e. HTTP) in SogouSDK of Chinese Samsung Keyboard prior to...
Moderate
Unreviewed
CVE-2023-42579
was published
Dec 5, 2023
LOYTEC electronics GmbH LINX Configurator 7.4.10 uses HTTP Basic Authentication, which transmits...
High
Unreviewed
CVE-2023-46383
was published
Dec 1, 2023
LOYTEC electronics GmbH LINX Configurator 7.4.10 is vulnerable to Insecure Permissions. An admin...
High
Unreviewed
CVE-2023-46385
was published
Dec 1, 2023
A vulnerability has been identified in COMOS (All versions < V10.4.4). Caching system in the...
Low
Unreviewed
CVE-2023-43503
was published
Nov 14, 2023
LOYTEC LINX-212 firmware 6.2.4 and LVIS-3ME12-A1 firmware 6.2.2 and LIOB-586 firmware 6.2.3...
High
Unreviewed
CVE-2023-46380
was published
Nov 5, 2023
LOYTEC LINX-212 firmware 6.2.4 and LVIS-3ME12-A1 firmware 6.2.2 and LIOB-586 firmware 6.2.3...
High
Unreviewed
CVE-2023-46382
was published
Nov 5, 2023
bcrypt password hashing in Botan before 2.1.0 does not correctly handle passwords with a length...
High
Unreviewed
CVE-2017-7252
was published
Nov 3, 2023
A vulnerability has been identified in PT-G503 Series firmware versions prior to v5.2, where the...
Low
Unreviewed
CVE-2023-5035
was published
Nov 2, 2023
The Android Client application, when enrolled with the define method 1 (the user manually...
High
Unreviewed
CVE-2023-45321
was published
Oct 25, 2023
IBM Security Verify Governance 10.0 does not encrypt sensitive or critical information before...
High
Unreviewed
CVE-2023-33837
was published
Oct 23, 2023
IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in environment...
High
Unreviewed
CVE-2023-38276
was published
Oct 22, 2023
ProTip!
Advisories are also available from the
GraphQL API