GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,643
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,299 advisories
Filter by severity
A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function...
Moderate
Unreviewed
CVE-2024-7905
was published
Aug 18, 2024
A vulnerability was found in DedeBIZ 6.3.0. It has been declared as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-7903
was published
Aug 18, 2024
A vulnerability was found in DedeBIZ 6.3.0. It has been rated as critical. Affected by this issue...
Moderate
Unreviewed
CVE-2024-7904
was published
Aug 18, 2024
The Metform Elementor Contact Form Builder for WordPress is vulnerable to Arbitrary File Upload...
High
Unreviewed
CVE-2023-0714
was published
Aug 17, 2024
projeqtor up to 11.2.0 was discovered to contain a remote code execution (RCE) vulnerability via...
High
Unreviewed
CVE-2024-29387
was published
Apr 4, 2024
Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/we_cmd.php
Moderate
Unreviewed
CVE-2024-28418
was published
Mar 14, 2024
flusity-CMS 2.33 is vulnerable to Unrestricted Upload of File with Dangerous Type in...
Moderate
Unreviewed
CVE-2024-25410
was published
Feb 26, 2024
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows...
High
Unreviewed
CVE-2024-42676
was published
Aug 15, 2024
File Upload vulnerability in the function for employees to upload avatars in Code-Projects Simple...
Moderate
Unreviewed
CVE-2024-31610
was published
Apr 26, 2024
Jan path traversal vulnerability
Critical
CVE-2024-37273
was published
for
@janhq/core
(npm)
Jun 4, 2024
The Bit Form plugin for WordPress is vulnerable to arbitrary file uploads due to missing file...
High
Unreviewed
CVE-2024-6123
was published
Jul 9, 2024
Arbitrary File Upload vulnerability in MegaBIP software allows attacker to upload any file to the...
Critical
Unreviewed
CVE-2024-1659
was published
Jun 12, 2024
An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service,...
High
Unreviewed
CVE-2021-36741
was published
May 24, 2022
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an...
Critical
Unreviewed
CVE-2024-39397
was published
Aug 14, 2024
The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to arbitrary file...
High
Unreviewed
CVE-2024-4389
was published
Aug 14, 2024
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager...
High
Unreviewed
CVE-2024-41913
was published
Aug 6, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in BerqWP allows Code Injection...
Critical
Unreviewed
CVE-2024-43160
was published
Aug 13, 2024
The Media Library Assistant plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-6823
was published
Aug 13, 2024
SAP BusinessObjects Business Intelligence
Platform allows an authenticated attacker to upload...
Low
Unreviewed
CVE-2024-41731
was published
Aug 13, 2024
SAP BusinessObjects Business Intelligence
Platform allows an authenticated attacker to upload...
Moderate
Unreviewed
CVE-2024-42375
was published
Aug 13, 2024
SAP BusinessObjects Business Intelligence
Platform allows an authenticated attacker to upload...
Low
Unreviewed
CVE-2024-28166
was published
Aug 13, 2024
A vulnerability was found in Fujian mwcms 1.0.0. It has been rated as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-7706
was published
Aug 13, 2024
A vulnerability was found in Fujian mwcms 1.0.0. It has been declared as critical. Affected by...
Moderate
Unreviewed
CVE-2024-7705
was published
Aug 13, 2024
An arbitrary file upload vulnerability in /fileupload/upload.cfm in Daemon PTY Limited FarCry...
Critical
Unreviewed
CVE-2024-35527
was published
Jun 26, 2024
ThreatSonar Anti-Ransomware from TeamT5 does not properly validate the content of uploaded files....
High
Unreviewed
CVE-2024-7694
was published
Aug 12, 2024
ProTip!
Advisories are also available from the
GraphQL API