Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
33
GitHub Actions
22
Go
2,121
Maven
5,000+
npm
3,783
NuGet
683
pip
3,465
Pub
12
RubyGems
893
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,464 advisories

Loading
An access control issue in the component form2WlAc.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210... Moderate Unreviewed
CVE-2024-57678 was published Jan 16, 2025
An access control issue in the component form2WlanBasicSetup.cgi of D-Link 816A2_FWv1... Moderate Unreviewed
CVE-2024-57676 was published Jan 16, 2025
An access control issue in the component form2PortriggerRule.cgi of D-Link 816A2_FWv1... Moderate Unreviewed
CVE-2024-57680 was published Jan 16, 2025
An access control issue in the component websURLFilterAddDel of D-Link 816A2_FWv1... Moderate Unreviewed
CVE-2024-57683 was published Jan 16, 2025
An access control issue in the component form2alg.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210... Moderate Unreviewed
CVE-2024-57681 was published Jan 16, 2025
The Booster for WooCommerce plugin is vulnerable to Unauthenticated Arbitrary Shortcode Execution... Moderate Unreviewed
CVE-2024-3957 was published May 2, 2024
macrozheng mall-tiny 1.0.1 suffers from Insecure Permissions. The application's JWT signing keys... Critical Unreviewed
CVE-2024-57432 was published Jan 31, 2025
macrozheng mall-tiny 1.0.1 is vulnerable to Incorrect Access Control via the logout function.... High Unreviewed
CVE-2024-57433 was published Feb 1, 2025
SSH Communication Security PrivX versions between 18.0-36.0 implement insufficient validation on... Critical Unreviewed
CVE-2024-47857 was published Jan 31, 2025
Infopop Ultimate Bulletin Board up to v5.47a was discovered to allow all messages posted inside... Moderate Unreviewed
CVE-2022-25091 was published Apr 27, 2023
Improper access control in reporting engine of Odoo Community 14.0 through 15.0, and Odoo... High Unreviewed
CVE-2021-23203 was published Apr 25, 2023
Improper access control in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier... Moderate Unreviewed
CVE-2021-44465 was published Apr 25, 2023
Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: SDK... Moderate Unreviewed
CVE-2025-21560 was published Jan 21, 2025
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR... High Unreviewed
CVE-2023-26244 was published Apr 27, 2023
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR... High Unreviewed
CVE-2023-26245 was published Apr 27, 2023
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR... High Unreviewed
CVE-2023-26246 was published Apr 27, 2023
Docker Desktop for Windows before 4.6.0 allows attackers to delete (or create) any file through... High Unreviewed
CVE-2022-37326 was published Apr 27, 2023
This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded... High Unreviewed
CVE-2024-23928 was published Jan 31, 2025
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2024-23963 was published Jan 31, 2025
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2024-23921 was published Jan 31, 2025
This vulnerability allows network-adjacent attackers to disclose sensitive information on... Moderate Unreviewed
CVE-2024-23937 was published Jan 31, 2025
Software installed and run as a non-privileged user may conduct improper read/write operations on... High Unreviewed
CVE-2024-46974 was published Jan 31, 2025
Incorrect Authorization vulnerability in Drupal Content Entity Clone allows Forceful Browsing... Moderate Unreviewed
CVE-2024-13271 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Freelinking allows Forceful Browsing.This issue... Moderate Unreviewed
CVE-2024-13270 was published Jan 9, 2025
A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches ... Low Unreviewed
CVE-2024-54010 was published Jan 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database