GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
55 advisories
Filter by severity
The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress...
Moderate
Unreviewed
CVE-2024-12875
was published
Dec 21, 2024
A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and...
Moderate
Unreviewed
CVE-2024-12357
was published
Dec 9, 2024
NTLM Hash Disclosure Spoofing Vulnerability
Moderate
Unreviewed
CVE-2024-43451
was published
Nov 12, 2024
A file overwrite vulnerability exists in gaizhenbiao/chuanhuchatgpt versions <= 20240410. This...
Moderate
Unreviewed
CVE-2024-5823
was published
Oct 29, 2024
The Code Explorer plugin for WordPress is vulnerable to arbitrary external file reading in all...
Moderate
Unreviewed
CVE-2023-5816
was published
Oct 30, 2024
A vulnerability was found in jeanmarc77 123solar up to 1.8.4.5. It has been rated as critical....
Moderate
Unreviewed
CVE-2024-9275
was published
Sep 27, 2024
Leanote version 2.7.0 allows obtaining arbitrary local files. This is possible
because the...
Moderate
Unreviewed
CVE-2024-0849
was published
Feb 7, 2024
A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-7911
was published
Aug 18, 2024
Windows Compressed Folder Tampering Vulnerability
Moderate
Unreviewed
CVE-2024-38165
was published
Aug 13, 2024
Microsoft Outlook Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-38173
was published
Aug 13, 2024
A vulnerability was found in itsourcecode Airline Reservation System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-7497
was published
Aug 6, 2024
A vulnerability has been found in itsourcecode Airline Reservation System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-7496
was published
Aug 6, 2024
A vulnerability, which was classified as problematic, was found in formtools.org Form Tools 3.1.1...
Moderate
Unreviewed
CVE-2024-6937
was published
Jul 21, 2024
Windows Distributed Transaction Coordinator Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-38049
was published
Jul 9, 2024
External Control of File Name or Path (CWE-73) in the Controller 6000 and Controller 7000 allows...
Moderate
Unreviewed
CVE-2024-23317
was published
Jul 11, 2024
Remote Command program allows an attacker to read any file using a Local File Inclusion...
Moderate
Unreviewed
CVE-2024-27175
was published
Jun 14, 2024
An issue was discovered in Logpoint before 7.4.0. It allows Local File Inclusion (LFI) when an...
Moderate
Unreviewed
CVE-2024-33860
was published
May 7, 2024
A vulnerability was found in Campcodes Online Laundry Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-4818
was published
May 14, 2024
Dell PowerScale OneFS versions 8.2.x through 9.7.0.2 contains an external control of file name or...
Moderate
Unreviewed
CVE-2024-25965
was published
May 14, 2024
NVIDIA Triton Inference Server for Linux contains a vulnerability in the tracing API, where a...
Moderate
Unreviewed
CVE-2024-0100
was published
May 14, 2024
Windows Compressed Folder Tampering Vulnerability
Moderate
Unreviewed
CVE-2024-26185
was published
Mar 12, 2024
A file disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated...
Moderate
Unreviewed
CVE-2023-0008
was published
May 10, 2023
A file write vulnerability exists in the OAS Engine Save Security Configuration functionality of...
Moderate
Unreviewed
CVE-2024-22178
was published
Apr 3, 2024
A file write vulnerability exists in the OAS Engine Tags Configuration functionality of Open...
Moderate
Unreviewed
CVE-2024-21870
was published
Apr 3, 2024
CloudLinux
CageFS 7.0.8-2 or below insufficiently restricts file paths supplied to
the sendmail...
Moderate
Unreviewed
CVE-2020-36772
was published
Jan 22, 2024
ProTip!
Advisories are also available from the
GraphQL API