GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,726
Composer 4,237
Erlang 31
GitHub Actions 21
Go 2,003
Maven 5,192
npm 3,714
NuGet 661
pip 3,387
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,531

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

109,017 advisories

Filter by severity

Sort by

Least recently updated

A Stored Cross-Site Scripting (XSS) vulnerability in the Management Console of BlackBerry AtHoc... Moderate Unreviewed

CVE-2024-51723 was published Nov 25, 2024

A cross-site scripting (XSS) vulnerability in the /scroll.php endpoint of LafeLabs Chaos v0.0.1... Moderate Unreviewed

CVE-2024-53599 was published Nov 25, 2024

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL... Moderate Unreviewed

CVE-2024-11498 was published Nov 25, 2024

A vulnerability, which was classified as critical, was found in 1000 Projects Beauty Parlour... Moderate Unreviewed

CVE-2024-11648 was published Nov 25, 2024

A vulnerability has been found in 1000 Projects Beauty Parlour Management System 1.0 and... Moderate Unreviewed

CVE-2024-11649 was published Nov 25, 2024

There exists an out of bounds read/write in LibJXL versions prior to commit... Moderate Unreviewed

CVE-2024-11403 was published Nov 25, 2024

Incorrect authorization in the permission validation component of Devolutions Remote Desktop... Moderate Unreviewed

CVE-2024-11670 was published Nov 25, 2024

Incorrect authorization in the add permission component in Devolutions Remote Desktop Manager... Moderate Unreviewed

CVE-2024-11672 was published Nov 25, 2024

A vulnerability, which was classified as critical, has been found in 1000 Projects Beauty Parlour... Moderate Unreviewed

CVE-2024-11647 was published Nov 25, 2024

Improper authentication in SQL data source MFA validation in Devolutions Remote Desktop Manager... Moderate Unreviewed

CVE-2024-11671 was published Nov 25, 2024

IBM Jazz Foundation 7.0.2 and below are vulnerable to cross-site scripting. This vulnerability... Moderate Unreviewed

CVE-2023-45181 was published Nov 25, 2024

IBM Jazz Foundation 7.0.2 and 7.0.3 could allow a user to change their dashboard using a... Moderate Unreviewed

CVE-2023-26280 was published Nov 25, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-7130 was published Nov 25, 2024

Improper control of framework service permissions with possibility of some sensitive device... Moderate Unreviewed

CVE-2020-12491 was published Nov 25, 2024

A vulnerability was found in welliamcao OpsManage 3.0.1/3.0.2/3.0.3/3.0.4/3.0.5. It has been... Moderate Unreviewed

CVE-2024-11662 was published Nov 25, 2024

IPP software prior to v1.71 is vulnerable to default credential vulnerability. This could lead... Moderate Unreviewed

CVE-2022-33862 was published Nov 25, 2024

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by... Moderate Unreviewed

CVE-2024-11663 was published Nov 25, 2024

IPP software versions prior to v1.71 do not sufficiently verify the authenticity of data, in a... Moderate Unreviewed

CVE-2022-33861 was published Nov 25, 2024

Eaton Intelligent Power Manager (IPM) prior to 1.70 is vulnerable to stored Cross site scripting.... Moderate Unreviewed

CVE-2021-23282 was published Nov 25, 2024

A vulnerability was found in code-projects Farmacia 1.0. It has been classified as problematic.... Moderate Unreviewed

CVE-2024-11660 was published Nov 25, 2024

A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and... Moderate Unreviewed

CVE-2024-11659 was published Nov 25, 2024

A vulnerability was found in Codezips Free Exam Hall Seating Management System 1.0. It has been... Moderate Unreviewed

CVE-2024-11661 was published Nov 25, 2024

A vulnerability has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and... Moderate Unreviewed

CVE-2024-11658 was published Nov 25, 2024

The WPForms WordPress plugin before 1.9.1.6 does not sanitise and escape some of its settings,... Moderate Unreviewed

CVE-2024-7056 was published Nov 25, 2024

The Photo Gallery, Sliders, Proofing and WordPress plugin before 3.59.5 does not sanitise and... Moderate Unreviewed

CVE-2024-6393 was published Nov 25, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

109,017 advisories