Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

12 advisories

Loading
An issue was discovered in app/Model/Attribute.php in MISP before 2.4.89. There is a critical API... Moderate Unreviewed
CVE-2018-8949 was published May 14, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 could allow an... Moderate Unreviewed
CVE-2019-4386 was published May 24, 2022
A user authorized to perform database queries may trigger denial of service by issuing specially... Moderate Unreviewed
CVE-2019-20923 was published May 24, 2022
xwiki contains Exposed Dangerous Method or Function Moderate
CVE-2023-26478 was published for org.xwiki.platform:xwiki-platform-store-filesystem-oldcore (Maven) Mar 3, 2023
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05), CP-8050... Moderate Unreviewed
CVE-2023-33921 was published Jun 13, 2023
In JetBrains TeamCity before 2023.11 users with access to the agent machine might obtain... Moderate Unreviewed
CVE-2024-29880 was published Mar 21, 2024
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.2 could allow a privileged user to... Moderate Unreviewed
CVE-2024-27261 was published Apr 12, 2024
PDF-XChange Editor readFileIntoStream Exposed Dangerous Function Information Disclosure... Moderate Unreviewed
CVE-2023-39495 was published May 3, 2024
PDF-XChange Editor Net.HTTP.requests Exposed Dangerous Function Information Disclosure... Moderate Unreviewed
CVE-2023-39505 was published May 3, 2024
Default installation of `synthetic-monitoring-agent` exposes sensitive information Moderate
CVE-2022-46156 was published for github.com/grafana/synthetic-monitoring-agent (Go) Sep 6, 2024
iamwillbar
The lack of access restriction to a resource from unauthorized users makes MXsecurity software... Moderate Unreviewed
CVE-2024-4739 was published Oct 18, 2024
Orchid Platform has Method Exposure Vulnerability in Modals Moderate
CVE-2024-51992 was published for orchid/platform (Composer) Nov 12, 2024
catferq
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database