GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
40 advisories
Filter by severity
The SMSA Shipping(official) plugin for WordPress is vulnerable to arbitrary file deletion due to...
High
Unreviewed
CVE-2024-12066
was published
Dec 21, 2024
External Control of File Name or Path vulnerability in Edgecross Basic Software for Windows...
High
Unreviewed
CVE-2024-4230
was published
Dec 19, 2024
External Control of File Name or Path vulnerability in PlexTrac allows Local Code Inclusion...
High
Unreviewed
CVE-2024-11838
was published
Dec 13, 2024
Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43581
was published
Oct 8, 2024
Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43615
was published
Oct 8, 2024
Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38029
was published
Oct 8, 2024
There is a local file inclusion vulnerability in Esri Portal for ArcGIS 11.2. 11.1, 11.0 and 10.9...
High
Unreviewed
CVE-2024-38040
was published
Oct 4, 2024
Proxmox Virtual Environment is an open-source server management platform for enterprise...
High
Unreviewed
CVE-2024-21545
was published
Sep 25, 2024
Zoom VDI client installer prior to 5.14.0 contains an improper access control vulnerability. A...
High
Unreviewed
CVE-2023-28603
was published
Jun 13, 2023
The WP Delicious – Recipe Plugin for Food Bloggers (formerly Delicious Recipes) plugin for...
High
Unreviewed
CVE-2024-7626
was published
Sep 11, 2024
An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. The Backup Exec...
High
Unreviewed
CVE-2024-33671
was published
Apr 26, 2024
A vulnerability in the JSON file handling of gaizhenbiao/chuanhuchatgpt version 20240410 allows...
High
Unreviewed
CVE-2024-6255
was published
Jul 31, 2024
An issue was discovered in provd before version 0.1.5 with a setuid binary, which allows a local...
High
Unreviewed
CVE-2024-6714
was published
Jul 23, 2024
External Control of File Name or Path in GitHub repository stitionai/devika prior to -.
High
Unreviewed
CVE-2024-5334
was published
Jun 27, 2024
A vulnerability in the Tail-f High Availability Cluster Communications (HCC) function pack of...
High
Unreviewed
CVE-2024-20366
was published
May 15, 2024
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected...
High
Unreviewed
CVE-2024-27944
was published
May 14, 2024
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The bulk import...
High
Unreviewed
CVE-2024-27945
was published
May 14, 2024
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected...
High
Unreviewed
CVE-2024-27943
was published
May 14, 2024
Windows HTML Platforms Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-20652
was published
Jan 9, 2024
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics...
High
Unreviewed
CVE-2022-42734
was published
Jul 6, 2023
An external control of file name or path vulnerability [CWE-73] in FortiClientMac version 7.2.3...
High
Unreviewed
CVE-2024-31492
was published
Apr 10, 2024
A vulnerability has been identified in Automation License Manager V5 (All versions), Automation...
High
Unreviewed
CVE-2022-43513
was published
Jan 10, 2023
Dell Unity 5.3 contain(s) an Arbitrary File Creation vulnerability. A remote unauthenticated...
High
Unreviewed
CVE-2023-43074
was published
Oct 23, 2023
An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in...
High
Unreviewed
CVE-2023-36634
was published
Sep 13, 2023
A file write vulnerability exists in the OAS Engine configuration functionality of Open...
High
Unreviewed
CVE-2023-32615
was published
Sep 5, 2023
ProTip!
Advisories are also available from the
GraphQL API