GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,777
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,014
Maven 5,201
npm 3,721
NuGet 662
pip 3,393
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,157

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

20,686 advisories

Filter by severity

Sort by

Least recently updated

The Membership For WooCommerce WordPress plugin before 2.1.7 does not validate uploaded files,... Critical Unreviewed

CVE-2022-4395 was published Jan 30, 2023

A SQL injection vulnerability has been identified in Siyuan 3.1.11 via the ids array parameter in... Critical Unreviewed

CVE-2024-53506 was published Nov 29, 2024

In elisp-mode.el in GNU Emacs through 30.0.92, a user who chooses to invoke elisp-completion-at... Critical Unreviewed

CVE-2024-53920 was published Nov 27, 2024

A SQL injection vulnerability has been identified in Siyuan 3.1.11 via the notebook parameter in ... Critical Unreviewed

CVE-2024-53504 was published Nov 29, 2024

OpenVidReview 1.0 is vulnerable to Incorrect Access Control. The /upload route is accessible... Critical Unreviewed

CVE-2024-46054 was published Nov 27, 2024

On Android, Firefox may have inadvertently allowed viewing saved passwords without the required... Critical Unreviewed

CVE-2024-11703 was published Nov 26, 2024

FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame function within libavcodec... Critical Unreviewed

CVE-2024-35368 was published Nov 29, 2024

FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_altivec.c, static const vec_s8... Critical Unreviewed

CVE-2024-35367 was published Nov 29, 2024

A SQL injection vulnerability was discovered in Siyuan 3.1.11 in /getHistoryItems. Critical Unreviewed

CVE-2024-53507 was published Nov 29, 2024

FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parse_options function of... Critical Unreviewed

CVE-2024-35366 was published Nov 29, 2024

A SQL injection vulnerability has been identified in Siyuan 3.1.11 via the id parameter at ... Critical Unreviewed

CVE-2024-53505 was published Nov 29, 2024

Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information... Critical Unreviewed

CVE-2024-38476 was published Jul 1, 2024

In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could... Critical Unreviewed

CVE-2024-8785 was published Dec 2, 2024

In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could... Critical Unreviewed

CVE-2024-46909 was published Dec 2, 2024

IdentityIQ 8.4 and all 8.4 patch levels prior to 8.4p2, IdentityIQ 8.3 and all 8.3 patch levels... Critical Unreviewed

CVE-2024-10905 was published Dec 2, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in stefanbohacek Fediverse Embeds... Critical Unreviewed

CVE-2024-52476 was published Dec 2, 2024

IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials,... Critical Unreviewed

CVE-2024-49805 was published Nov 29, 2024

IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a remote authenticated... Critical Unreviewed

CVE-2024-49803 was published Nov 29, 2024

DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are... Critical Unreviewed

CVE-2024-52781 was published Nov 29, 2024

DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are... Critical Unreviewed

CVE-2024-52782 was published Nov 29, 2024

IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials,... Critical Unreviewed

CVE-2024-49806 was published Nov 29, 2024

DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are... Critical Unreviewed

CVE-2024-52778 was published Nov 29, 2024

DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are... Critical Unreviewed

CVE-2024-52779 was published Nov 29, 2024

DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L, <=9.3.5.26, and DCME-720 <=9.1.5.11 are... Critical Unreviewed

CVE-2024-52777 was published Nov 29, 2024

DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are... Critical Unreviewed

CVE-2024-52780 was published Nov 29, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

20,686 advisories