Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

256,220 advisories

Loading
A vulnerability was found in welliamcao OpsManage 3.0.1/3.0.2/3.0.3/3.0.4/3.0.5. It has been... Moderate Unreviewed
CVE-2024-11662 was published Nov 25, 2024
A vulnerability was found in the Keycloak Server. The Keycloak Server is vulnerable to a denial... Moderate Unreviewed
CVE-2024-9666 was published Nov 25, 2024
IPP software prior to v1.71 is vulnerable to default credential vulnerability. This could lead... Moderate Unreviewed
CVE-2022-33862 was published Nov 25, 2024
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by... Moderate Unreviewed
CVE-2024-11663 was published Nov 25, 2024
A vulnerability was found in the Keycloak-services package. If untrusted data is passed to the... Moderate Unreviewed
CVE-2024-10270 was published Nov 25, 2024
IPP software versions prior to v1.71 do not sufficiently verify the authenticity of data, in a... Moderate Unreviewed
CVE-2022-33861 was published Nov 25, 2024
Eaton Intelligent Power Manager (IPM) prior to 1.70 is vulnerable to stored Cross site scripting.... Moderate Unreviewed
CVE-2021-23282 was published Nov 25, 2024
A vulnerability was found in Codezips Free Exam Hall Seating Management System 1.0. It has been... Moderate Unreviewed
CVE-2024-11661 was published Nov 25, 2024
A flaw was found in Keycloak. This issue occurs because sensitive runtime values, such as... Moderate Unreviewed
CVE-2024-10451 was published Nov 25, 2024
A vulnerability, which was classified as critical, has been found in eNMS up to 4.2. Affected by... High Unreviewed
CVE-2024-11664 was published Nov 25, 2024
A vulnerability was found in code-projects Farmacia 1.0. It has been classified as problematic.... Moderate Unreviewed
CVE-2024-11660 was published Nov 25, 2024
A vulnerability was found in Keycloak. A user with high privileges could read sensitive... Low Unreviewed
CVE-2024-10492 was published Nov 25, 2024
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and... Moderate Unreviewed
CVE-2024-11659 was published Nov 25, 2024
A flaw was found in OpenShift Console. A Server Side Request Forgery (SSRF) attack can happen if... Moderate Unreviewed
CVE-2024-6538 was published Nov 25, 2024
A vulnerability, which was classified as critical, was found in EnGenius ENH1350EXT, ENS500-AC... Moderate Unreviewed
CVE-2024-11657 was published Nov 25, 2024
A vulnerability has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and... Moderate Unreviewed
CVE-2024-11658 was published Nov 25, 2024
The WPForms WordPress plugin before 1.9.1.6 does not sanitise and escape some of its settings,... Unknown Unreviewed
CVE-2024-7056 was published Nov 25, 2024
A vulnerability was found in the Ansible Automation Platform (AAP). This flaw allows attackers to... Moderate Unreviewed
CVE-2024-11483 was published Nov 25, 2024
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has... Moderate Unreviewed
CVE-2024-11653 was published Nov 25, 2024
The YaDisk Files WordPress plugin through 1.2.5 does not sanitise and escape some of its settings... Unknown Unreviewed
CVE-2024-10710 was published Nov 25, 2024
The Photo Gallery, Sliders, Proofing and WordPress plugin before 3.59.5 does not sanitise and... Unknown Unreviewed
CVE-2024-6393 was published Nov 25, 2024
A vulnerability, which was classified as critical, has been found in EnGenius ENH1350EXT, ENS500... Moderate Unreviewed
CVE-2024-11656 was published Nov 25, 2024
This record is rejected as duplicate. All references should point to CVE-2021-1904. Moderate Unreviewed
CVE-2020-11311 was published Nov 25, 2024
The YaDisk Files WordPress plugin through 1.2.5 does not validate and escape some of its... Unknown Unreviewed
CVE-2024-10709 was published Nov 25, 2024
A vulnerability classified as critical has been found in EnGenius ENH1350EXT, ENS500-AC and... Moderate Unreviewed
CVE-2024-11654 was published Nov 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database