GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,485

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

92,311 advisories

Filter by severity

Sort by

Least recently updated

A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a... High Unreviewed

CVE-2024-41971 was published Nov 18, 2024

A low privileged remote attacker may modify the BACNet service properties due to incorrect... High Unreviewed

CVE-2024-41974 was published Nov 18, 2024

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed

CVE-2024-42386 was published Nov 18, 2024

A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead... High Unreviewed

CVE-2024-41973 was published Nov 18, 2024

Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed

CVE-2024-42384 was published Nov 18, 2024

A flaw was found within the handling of SMB2 read requests in the kernel ksmbd module. The issue... High Unreviewed

CVE-2023-39179 was published Nov 18, 2024

Improper Control of Generation of Code ('Code Injection'), Cross-Site Request Forgery (CSRF), :... High Unreviewed

CVE-2024-48962 was published Nov 18, 2024

Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the... High Unreviewed

CVE-2024-49574 was published Nov 18, 2024

A low privileged remote attacker may modify the configuration of the CODESYS V3 service through a... High Unreviewed

CVE-2024-41969 was published Nov 18, 2024

A low privileged remote attacker may modify the boot mode configuration setup of the device,... High Unreviewed

CVE-2024-41967 was published Nov 18, 2024

Delinea Privilege Manager before 12.0.2 mishandles the security of the Windows agent. High Unreviewed

CVE-2024-52926 was published Nov 18, 2024

The DVC from TRCore has a Path Traversal vulnerability, allowing unauthenticated remote attackers... High Unreviewed

CVE-2024-11309 was published Nov 18, 2024

The DVC from TRCore has a Path Traversal vulnerability, allowing unauthenticated remote attackers... High Unreviewed

CVE-2024-11310 was published Nov 18, 2024

An issue was discovered in Veritas NetBackup before 10.5. This only applies to NetBackup... High Unreviewed

CVE-2024-52945 was published Nov 18, 2024

A vulnerability was found in Samba where a delegated administrator with permission to create... High Unreviewed

CVE-2020-25720 was published Nov 17, 2024

A flaw was found in Undertow, which incorrectly parses cookies with certain value-delimiting... High Unreviewed

CVE-2023-4639 was published Nov 17, 2024

A flaw was found in kube-controller-manager. This issue occurs when the initial application of a... High Unreviewed

CVE-2024-0793 was published Nov 17, 2024

guix-daemon in GNU Guix before 5ab3c4c allows privilege escalation because build outputs are... High Unreviewed

CVE-2024-52867 was published Nov 17, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Skpstorm SK WP Settings Backup allows Object... High Unreviewed

CVE-2024-52415 was published Nov 17, 2024

The Login using WordPress Users ( WP as SAML IDP ) plugin for WordPress is vulnerable to time... High Unreviewed

CVE-2024-9887 was published Nov 16, 2024

The Blogger 301 Redirect plugin for WordPress is vulnerable to blind time-based SQL Injection via... High Unreviewed

CVE-2024-10645 was published Nov 16, 2024

The WordPress Video Robot - The Ultimate Video Importer plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-9192 was published Nov 16, 2024

The 3D FlipBook, PDF Viewer, PDF Embedder – Real 3D FlipBook WordPress Plugin plugin for... High Unreviewed

CVE-2024-9849 was published Nov 16, 2024

The The Uix Slideshow plugin for WordPress is vulnerable to arbitrary shortcode execution in all... High Unreviewed

CVE-2024-9839 was published Nov 16, 2024

The PDF Generator Addon for Elementor Page Builder plugin for WordPress is vulnerable to Path... High Unreviewed

CVE-2024-9935 was published Nov 16, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

92,311 advisories