Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,643
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,299 advisories

Loading
A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function... Moderate Unreviewed
CVE-2024-7905 was published Aug 18, 2024
A vulnerability was found in DedeBIZ 6.3.0. It has been declared as critical. Affected by this... Moderate Unreviewed
CVE-2024-7903 was published Aug 18, 2024
A vulnerability was found in DedeBIZ 6.3.0. It has been rated as critical. Affected by this issue... Moderate Unreviewed
CVE-2024-7904 was published Aug 18, 2024
The Metform Elementor Contact Form Builder for WordPress is vulnerable to Arbitrary File Upload... High Unreviewed
CVE-2023-0714 was published Aug 17, 2024
projeqtor up to 11.2.0 was discovered to contain a remote code execution (RCE) vulnerability via... High Unreviewed
CVE-2024-29387 was published Apr 4, 2024
Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/we_cmd.php Moderate Unreviewed
CVE-2024-28418 was published Mar 14, 2024
flusity-CMS 2.33 is vulnerable to Unrestricted Upload of File with Dangerous Type in... Moderate Unreviewed
CVE-2024-25410 was published Feb 26, 2024
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows... High Unreviewed
CVE-2024-42676 was published Aug 15, 2024
File Upload vulnerability in the function for employees to upload avatars in Code-Projects Simple... Moderate Unreviewed
CVE-2024-31610 was published Apr 26, 2024
Jan path traversal vulnerability Critical
CVE-2024-37273 was published for @janhq/core (npm) Jun 4, 2024
The Bit Form plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... High Unreviewed
CVE-2024-6123 was published Jul 9, 2024
Arbitrary File Upload vulnerability in MegaBIP software allows attacker to upload any file to the... Critical Unreviewed
CVE-2024-1659 was published Jun 12, 2024
An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service,... High Unreviewed
CVE-2021-36741 was published May 24, 2022
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an... Critical Unreviewed
CVE-2024-39397 was published Aug 14, 2024
The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2024-4389 was published Aug 14, 2024
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager... High Unreviewed
CVE-2024-41913 was published Aug 6, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in BerqWP allows Code Injection... Critical Unreviewed
CVE-2024-43160 was published Aug 13, 2024
The Media Library Assistant plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6823 was published Aug 13, 2024
SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker to upload... Low Unreviewed
CVE-2024-41731 was published Aug 13, 2024
SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker to upload... Moderate Unreviewed
CVE-2024-42375 was published Aug 13, 2024
SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker to upload... Low Unreviewed
CVE-2024-28166 was published Aug 13, 2024
A vulnerability was found in Fujian mwcms 1.0.0. It has been rated as critical. Affected by this... Moderate Unreviewed
CVE-2024-7706 was published Aug 13, 2024
A vulnerability was found in Fujian mwcms 1.0.0. It has been declared as critical. Affected by... Moderate Unreviewed
CVE-2024-7705 was published Aug 13, 2024
An arbitrary file upload vulnerability in /fileupload/upload.cfm in Daemon PTY Limited FarCry... Critical Unreviewed
CVE-2024-35527 was published Jun 26, 2024
ThreatSonar Anti-Ransomware from TeamT5 does not properly validate the content of uploaded files.... High Unreviewed
CVE-2024-7694 was published Aug 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database