GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,767

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

87 advisories

Filter by severity

Sort by

Least recently updated

Download of Code Without Integrity Check vulnerability in Genians Genian NAC V4.0, Genians Genian... Critical Unreviewed

CVE-2023-40254 was published Aug 11, 2023

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with... High Unreviewed

CVE-2023-37864 was published Aug 9, 2023

A download of code without Integrity check vulnerability [CWE-494] in FortiClientMac version 7.0... High Unreviewed

CVE-2023-22635 was published Apr 11, 2023

An exploitable firmware modification vulnerability was discovered in WNR612v2 Wireless Routers... High Unreviewed

CVE-2023-23110 was published Feb 2, 2023

Certain General Electric Renewable Energy products download firmware without an integrity check.... Critical Unreviewed

CVE-2022-24117 was published Dec 26, 2022

TP-Link TL-WR740N V1 and V2 v3.12.4 and earlier allows authenticated attackers to execute... Moderate Unreviewed

CVE-2022-46430 was published Dec 20, 2022

TP-Link TL-WR1043ND V1 3.13.15 and earlier allows authenticated attackers to execute arbitrary... Moderate Unreviewed

CVE-2022-46428 was published Dec 20, 2022

Rapid7 Nexpose versions prior to 6.6.172 failed to reliably validate the authenticity of update... Moderate Unreviewed

CVE-2022-4261 was published Dec 8, 2022

Data Integrity Failure in 'Backup Config' in D-Link DNR-322L <= 2.60B15 allows an authenticated... High Unreviewed

CVE-2022-40799 was published Nov 29, 2022

A remote file download issue can occur in some capabilities of Esri ArcGIS Server web services... Moderate Unreviewed

CVE-2022-38199 was published Oct 25, 2022

An arbitrary file download vulnerability in the downloadAction() function of Penta Security... Moderate Unreviewed

CVE-2022-31324 was published Sep 14, 2022

Novel-Plus v3.6.2 was discovered to contain an arbitrary file download vulnerability via the... High Unreviewed

CVE-2022-36671 was published Sep 2, 2022

An arbitrary file download vulnerability in Oliver v5 Library Server Versions < 5.00.008.053 via... High Unreviewed

CVE-2021-45027 was published Sep 2, 2022

Honeywell Experion PKS Safety Manager (SM and FSC) through 2022-05-06 has Insufficient... Critical Unreviewed

CVE-2022-30315 was published Jul 29, 2022

IOBit Advanced System Care 15, iTop Screen Recorder 2.1, iTop VPN 3.2, Driver Booster 9, and iTop... Moderate Unreviewed

CVE-2022-24140 was published Jul 7, 2022

A vulnerability exists in the file upload validation part of Hitachi Energy TXpert Hub CoreTec 4... High Unreviewed

CVE-2021-35532 was published Jun 8, 2022

Caphyon Ltd Advanced Installer 19.2 was discovered to contain a remote code execution (RCE)... High Unreviewed

CVE-2022-27438 was published Jun 7, 2022

A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on... High Unreviewed

CVE-2020-28213 was published May 24, 2022

DEXT5 Upload 5.0.0.117 and earlier versions contain a vulnerability, which could allow remote... High Unreviewed

CVE-2020-7875 was published May 24, 2022

Download of code without integrity check vulnerability in NEXACRO14 Runtime ActiveX control of... High Unreviewed

CVE-2020-7874 was published May 24, 2022

Download of code without integrity check vulnerability in ActiveX control of Younglimwon Co., Ltd... Critical Unreviewed

CVE-2020-7873 was published May 24, 2022

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur... Moderate Unreviewed

CVE-2021-30657 was published May 24, 2022

This issue was addressed with improved handling of file metadata. This issue is fixed in macOS... Moderate Unreviewed

CVE-2021-30658 was published May 24, 2022

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur... Moderate Unreviewed

CVE-2021-30669 was published May 24, 2022

In cPanel before 96.0.13, fix_cpanel_perl lacks verification of the integrity of downloads (SEC... High Unreviewed

CVE-2021-38588 was published May 24, 2022

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

87 advisories