GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
10,622 advisories
Filter by severity
Foxit PDF Reader PDF File Parsing Use-After-Free Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2021-34976
was published
May 8, 2024
Foxit PDF Reader PDF File Parsing Use-After-Free Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2021-34973
was published
May 8, 2024
Foxit PDF Reader Annotation Use of Uninitialized Variable Information Disclosure Vulnerability....
Low
Unreviewed
CVE-2021-34951
was published
May 8, 2024
Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2021-34949
was published
May 8, 2024
A local privilege escalation (LPE) vulnerability has been identified in Phish Alert Button for...
Low
Unreviewed
CVE-2024-29210
was published
May 7, 2024
Kimai information disclosure vulnerability
Low
CVE-2024-4596
was published
for
kimai/kimai
(Composer)
May 7, 2024
An Unverified Password Change could allow a malicious actor with API access to the device to...
Low
Unreviewed
CVE-2024-29208
was published
May 7, 2024
An Improper Access Control could allow a malicious actor authenticated in the API to enable...
Low
Unreviewed
CVE-2024-29206
was published
May 7, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through NULL...
Low
Unreviewed
CVE-2024-31078
was published
May 7, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through...
Low
Unreviewed
CVE-2024-3757
was published
May 7, 2024
Improper access control vulnerability in multitasking framework prior to SMR May-2024 Release 1...
Low
Unreviewed
CVE-2024-20855
was published
May 7, 2024
In Xpdf 4.05 (and earlier), a PDF object loop in the PDF resources leads to infinite recursion...
Low
Unreviewed
CVE-2024-4568
was published
May 6, 2024
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as...
Low
Unreviewed
CVE-2024-4528
was published
May 6, 2024
vodozemac has degraded secret zeroization capabilities
Low
CVE-2024-34063
was published
for
vodozemac
(Rust)
May 3, 2024
Bouncy Castle Java Cryptography API vulnerable to DNS poisoning
Low
CVE-2024-34447
was published
for
org.bouncycastle:bcprov-jdk12
(Maven)
May 3, 2024
IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 could allow a remote attacker to obtain...
Low
Unreviewed
CVE-2023-23474
was published
May 3, 2024
An Implicit intent vulnerability was reported in the Motorola framework that could allow an...
Low
Unreviewed
CVE-2024-3480
was published
May 3, 2024
An improper export vulnerability was reported in the Motorola Enterprise MotoDpms Provider (com...
Low
Unreviewed
CVE-2024-3479
was published
May 3, 2024
An implicit intent vulnerability was reported in the Motorola Phone Calls application that could...
Low
Unreviewed
CVE-2023-41824
was published
May 3, 2024
A path traversal vulnerability was reported in the Motorola Ready For application that could...
Low
Unreviewed
CVE-2023-41825
was published
May 3, 2024
An improper export vulnerability was reported in the Motorola Phone Calls application that could...
Low
Unreviewed
CVE-2023-41817
was published
May 3, 2024
Kofax Power PDF JP2 File Parsing Use-After-Free Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2023-51610
was published
May 3, 2024
Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2023-51611
was published
May 3, 2024
Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2023-51609
was published
May 3, 2024
ProTip!
Advisories are also available from the
GraphQL API