GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,503

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

92,321 advisories

Filter by severity

Sort by

Least recently updated

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-52428 was published Nov 18, 2024

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2024-52435 was published Nov 18, 2024

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2024-52436 was published Nov 18, 2024

The pathname of the root directory to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-11303 was published Nov 18, 2024

Execution with Unnecessary Privileges, : Improper Protection of Alternate Path vulnerability in... High Unreviewed

CVE-2024-8781 was published Nov 18, 2024

There exists a stored XSS Vulnerability in Kubeflow Pipeline View web UI. The Kubeflow Web UI... High Unreviewed

CVE-2024-9526 was published Nov 18, 2024

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2024-3370 was published Nov 18, 2024

An IDOR (Insecure Direct Object Reference) vulnerability has been discovered in AbsysNet,... High Unreviewed

CVE-2024-11318 was published Nov 18, 2024

A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a... High Unreviewed

CVE-2024-41971 was published Nov 18, 2024

A low privileged remote attacker may modify the BACNet service properties due to incorrect... High Unreviewed

CVE-2024-41974 was published Nov 18, 2024

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed

CVE-2024-42386 was published Nov 18, 2024

A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead... High Unreviewed

CVE-2024-41973 was published Nov 18, 2024

Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed

CVE-2024-42384 was published Nov 18, 2024

A flaw was found within the handling of SMB2 read requests in the kernel ksmbd module. The issue... High Unreviewed

CVE-2023-39179 was published Nov 18, 2024

Improper Control of Generation of Code ('Code Injection'), Cross-Site Request Forgery (CSRF), :... High Unreviewed

CVE-2024-48962 was published Nov 18, 2024

Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the... High Unreviewed

CVE-2024-49574 was published Nov 18, 2024

A low privileged remote attacker may modify the configuration of the CODESYS V3 service through a... High Unreviewed

CVE-2024-41969 was published Nov 18, 2024

A low privileged remote attacker may modify the boot mode configuration setup of the device,... High Unreviewed

CVE-2024-41967 was published Nov 18, 2024

Delinea Privilege Manager before 12.0.2 mishandles the security of the Windows agent. High Unreviewed

CVE-2024-52926 was published Nov 18, 2024

The DVC from TRCore has a Path Traversal vulnerability, allowing unauthenticated remote attackers... High Unreviewed

CVE-2024-11309 was published Nov 18, 2024

The DVC from TRCore has a Path Traversal vulnerability, allowing unauthenticated remote attackers... High Unreviewed

CVE-2024-11310 was published Nov 18, 2024

An issue was discovered in Veritas NetBackup before 10.5. This only applies to NetBackup... High Unreviewed

CVE-2024-52945 was published Nov 18, 2024

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain... High Unreviewed

CVE-2024-43704 was published Nov 18, 2024

A vulnerability was found in Samba where a delegated administrator with permission to create... High Unreviewed

CVE-2020-25720 was published Nov 17, 2024

A flaw was found in Undertow, which incorrectly parses cookies with certain value-delimiting... High Unreviewed

CVE-2023-4639 was published Nov 17, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

92,321 advisories