Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,344
Maven
5,000+
npm
3,973
NuGet
719
pip
3,770
Pub
12
RubyGems
923
Rust
978
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

43 advisories

Loading
An additional, nondocumented administrative account exists in mySCADA myPRO Versions 8.20.0 and... Critical Unreviewed
CVE-2021-43987 was published Dec 24, 2021
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored... Critical Unreviewed
CVE-2021-24867 was published Feb 22, 2022
The affected product is vulnerable due to an undocumented interface found on the device, which... High Unreviewed
CVE-2020-16204 was published May 24, 2022
Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT... Critical Unreviewed
CVE-2020-12504 was published May 24, 2022
A vulnerability in DSP driver prior to SMR Mar-2021 Release 1 allows attackers load arbitrary ELF... High Unreviewed
CVE-2021-25371 was published May 24, 2022
A vulnerability was found in ua-parser-js 0.7.29/0.8.0/1.0.0. It has been rated as critical. This... High Unreviewed
CVE-2021-4229 was published May 25, 2022
The tested version of Dominion Voting Systems ImageCast X has a Terminal Emulator application... High Unreviewed
CVE-2022-1741 was published Jun 25, 2022
On ORing net IAP-420(+) with FW version 2.0m a telnet server is enabled by default and cannot... Critical Unreviewed
CVE-2022-3203 was published Oct 21, 2022
Passhunt commit 54eb987d30ead2b8ebbf1f0b880aa14249323867 was discovered to contain a code... Critical Unreviewed
CVE-2022-46997 was published Dec 14, 2022
vSphere_selfuse commit 2a9fe074a64f6a0dd8ac02f21e2f10d66cac5749 was discovered to contain a code... Critical Unreviewed
CVE-2022-46996 was published Dec 14, 2022
Hidden functionality vulnerability in PIX-RT100 versions RT100_TEQ_2.1.1_EQ101 and RT100_TEQ_2.1... Moderate Unreviewed
CVE-2023-22316 was published Jan 17, 2023
A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super... Critical Unreviewed
CVE-2022-47767 was published Jan 26, 2023
In WAGO Unmanaged Switch (852-111/000-001) in firmware version 01 an undocumented configuration... Critical Unreviewed
CVE-2022-3843 was published Feb 16, 2023
MvcTools 6d48cd6830fc1df1d8c9d61caa1805fd6a1b7737 was discovered to contain a code execution... Critical Unreviewed
CVE-2023-24108 was published Feb 22, 2023
A command execution vulnerability exists in the hidden telnet service functionality of Netgear... High Unreviewed
CVE-2022-38452 was published Mar 21, 2023
A command execution vulnerability exists in the ubus backend communications functionality of... High Unreviewed
CVE-2022-36429 was published Mar 21, 2023
In Snap One OvrC Pro versions prior to 7.2, when logged into the... High Unreviewed
CVE-2023-25183 was published May 22, 2023
Hidden functionality vulnerability in the CBC products allows a remote authenticated attacker to... High Unreviewed
CVE-2023-40158 was published Aug 23, 2023
A vulnerability classified as problematic was found in Typecho 1.2.1. Affected by this... Low Unreviewed
CVE-2023-6614 was published Dec 8, 2023
A vulnerability was found in Poly Trio 8800 7.2.6.0019 and classified as critical. Affected by... Moderate Unreviewed
CVE-2023-4467 was published Dec 29, 2023
PAX Android based POS devices with PayDroid_8.1.0_Sagittarius_V11.1.45_20230314 or earlier can... Moderate Unreviewed
CVE-2023-42134 was published Jan 15, 2024
A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet (3KC9000-8TL75)... High Unreviewed
CVE-2024-22044 was published Mar 12, 2024
Hidden Functionality vulnerability in NEC Corporation Aterm WG1800HP4, WG1200HS3, WG1900HP2,... Critical Unreviewed
CVE-2024-28011 was published Mar 28, 2024
NEC Platforms DT900 and DT900S Series 5.0.0.0 – v5.3.4.4, v5.4.0.0 – v5.6.0.20 allows an attacker... Critical Unreviewed
CVE-2024-3016 was published May 14, 2024
A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All... Low Unreviewed
CVE-2024-33583 was published May 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database