Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

15 advisories

Loading
Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT... Critical Unreviewed
CVE-2020-12504 was published May 24, 2022
On ORing net IAP-420(+) with FW version 2.0m a telnet server is enabled by default and cannot... Critical Unreviewed
CVE-2022-3203 was published Oct 21, 2022
An additional, nondocumented administrative account exists in mySCADA myPRO Versions 8.20.0 and... Critical Unreviewed
CVE-2021-43987 was published Dec 24, 2021
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored... Critical Unreviewed
CVE-2021-24867 was published Feb 22, 2022
In WAGO Unmanaged Switch (852-111/000-001) in firmware version 01 an undocumented configuration... Critical Unreviewed
CVE-2022-3843 was published Feb 16, 2023
NEC Platforms DT900 and DT900S Series 5.0.0.0 – v5.3.4.4, v5.4.0.0 – v5.6.0.20 allows an attacker... Critical Unreviewed
CVE-2024-3016 was published May 14, 2024
A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker... Critical Unreviewed
CVE-2024-20439 was published Sep 4, 2024
Certain models of D-Link wireless routers have a hidden functionality where the telnet service is... Critical Unreviewed
CVE-2024-45697 was published Sep 16, 2024
The product is vulnerable to pass-the-hash attacks in combination with hardcoded credentials of... Critical Unreviewed
CVE-2024-10773 was published Dec 6, 2024
Hidden Functionality vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2,... Critical Unreviewed
CVE-2024-28011 was published Mar 28, 2024
A static login vulnerability exists in the wctrls functionality of Wavlink AC3000 M33A8.V5030... Critical Unreviewed
CVE-2024-39754 was published Jan 14, 2025
MvcTools 6d48cd6830fc1df1d8c9d61caa1805fd6a1b7737 was discovered to contain a code execution... Critical Unreviewed
CVE-2023-24108 was published Feb 22, 2023
A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super... Critical Unreviewed
CVE-2022-47767 was published Jan 26, 2023
vSphere_selfuse commit 2a9fe074a64f6a0dd8ac02f21e2f10d66cac5749 was discovered to contain a code... Critical Unreviewed
CVE-2022-46996 was published Dec 14, 2022
Passhunt commit 54eb987d30ead2b8ebbf1f0b880aa14249323867 was discovered to contain a code... Critical Unreviewed
CVE-2022-46997 was published Dec 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database