Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

256,060 advisories

Loading
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45463 was published Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45465 was published Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45464 was published Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45466 was published Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45467 was published Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45469 was published Oct 8, 2024
Improper access control in ActivityManager prior to SMR Oct-2024 Release 1 in select Android 12,... Moderate Unreviewed
CVE-2024-34662 was published Oct 8, 2024
Integer overflow in libSEF.quram.so prior to SMR Oct-2024 Release 1 allows local attackers to... Moderate Unreviewed
CVE-2024-34663 was published Oct 8, 2024
SSL Pinning Bypass in eWeLink Some hardware products allows local ATTACKER to Decrypt TLS... High Unreviewed
CVE-2024-7206 was published Oct 8, 2024
A vulnerability has been identified in SENTRON 7KM PAC3200 (All versions). Affected devices only... Critical Unreviewed
CVE-2024-41798 was published Oct 8, 2024
The Image Optimizer, Resizer and CDN – Sirv plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed
CVE-2024-8964 was published Oct 8, 2024
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed
CVE-2021-31889 was published May 24, 2022
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... High Unreviewed
CVE-2021-31883 was published May 24, 2022
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... High Unreviewed
CVE-2021-31881 was published May 24, 2022
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed
CVE-2021-31345 was published May 24, 2022
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Moderate Unreviewed
CVE-2021-31344 was published May 24, 2022
The Bridge Core plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'formforall... Moderate Unreviewed
CVE-2024-9292 was published Oct 8, 2024
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through out-of-bounds... Low Unreviewed
CVE-2024-45382 was published Oct 8, 2024
in OpenHarmony v4.1.0 allow a local attacker with high privileges arbitrary code execution in pre... Moderate Unreviewed
CVE-2024-39831 was published Oct 8, 2024
SAP Commerce Backoffice does not sufficiently encode user controlled inputs, resulting in Cross... Moderate Unreviewed
CVE-2024-45278 was published Oct 8, 2024
SAP NetWeaver Enterprise Portal (KMC) does not sufficiently encode user-controlled inputs,... Moderate Unreviewed
CVE-2024-47594 was published Oct 8, 2024
SAP BusinessObjects Business Intelligence Platform allows an authenticated user to send a... High Unreviewed
CVE-2024-37179 was published Oct 8, 2024
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS by memory leak. Low Unreviewed
CVE-2024-43696 was published Oct 8, 2024
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through improper input. Low Unreviewed
CVE-2024-43697 was published Oct 8, 2024
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause information leak through... Moderate Unreviewed
CVE-2024-39806 was published Oct 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database