GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,881

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

109,225 advisories

Filter by severity

Sort by

Least recently updated

Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p22, <2... Moderate Unreviewed

CVE-2024-47094 was published Nov 29, 2024

A XML External Entity (XXE) vulnerability has been identified in Easy Tax Client Software 2023 1... Moderate Unreviewed

CVE-2024-9044 was published Nov 29, 2024

Cross-site request forgery (CSRF) vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to... Moderate Unreviewed

CVE-2024-11014 was published Nov 29, 2024

51l3nc3, member of the AXIS OS Bug Bounty Program, has found that a Guard Tour VAPIX API... Moderate Unreviewed

CVE-2024-6173 was published Sep 10, 2024

Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API alwaysmulti.cgi... Moderate Unreviewed

CVE-2024-6509 was published Sep 10, 2024

A log spoofing flaw was found in the Tuned package due to improper sanitization of some API... Moderate Unreviewed

CVE-2024-52337 was published Nov 26, 2024

Code Sector TeraCopy 3.9.7 does not perform proper access validation on the source folder during... Moderate Unreviewed

CVE-2023-29586 was published Apr 19, 2023

A vulnerability classified as critical has been found in code-projects Concert Ticket Ordering... Moderate Unreviewed

CVE-2024-11970 was published Nov 29, 2024

A vulnerability classified as problematic was found in Guizhou Xiaoma Technology jpress 5.1.2.... Moderate Unreviewed

CVE-2024-11971 was published Nov 29, 2024

A low privileged remote attacker can insert a SQL injection in the web application due to... Moderate Unreviewed

CVE-2024-8308 was published Nov 28, 2024

A vulnerability, which was classified as critical, has been found in code-projects Responsive... Moderate Unreviewed

CVE-2024-11963 was published Nov 28, 2024

A vulnerability, which was classified as critical, was found in PHPGurukul Complaint Management... Moderate Unreviewed

CVE-2024-11964 was published Nov 28, 2024

A vulnerability was found in PHPGurukul Complaint Management system 1.0. It has been classified... Moderate Unreviewed

CVE-2024-11967 was published Nov 28, 2024

A vulnerability classified as critical was found in code-projects Simple Car Rental System 1.0.... Moderate Unreviewed

CVE-2024-11962 was published Nov 28, 2024

A vulnerability has been found in PHPGurukul Complaint Management system 1.0 and classified as... Moderate Unreviewed

CVE-2024-11965 was published Nov 28, 2024

A vulnerability was found in code-projects Farmacia up to 1.0. It has been declared as critical.... Moderate Unreviewed

CVE-2024-11968 was published Nov 28, 2024

The SEO Landing Page Generator plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2024-11366 was published Nov 28, 2024

The HLS Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's... Moderate Unreviewed

CVE-2024-11333 was published Nov 28, 2024

The FAQ Builder AYS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2024-11458 was published Nov 28, 2024

The LegalWeb Cloud plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-11761 was published Nov 28, 2024

The EmbedPress – Embed PDF, 3D Flipbook, Social Feeds, Google Docs, Vimeo, Wistia, YouTube Videos... Moderate Unreviewed

CVE-2024-11203 was published Nov 28, 2024

The Primary Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all... Moderate Unreviewed

CVE-2024-10670 was published Nov 28, 2024

The Login with Vipps and MobilePay plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-11786 was published Nov 28, 2024

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Information... Moderate Unreviewed

CVE-2024-10798 was published Nov 28, 2024

The `Kudos Donations – Easy donations and payments with Mollie` plugin for WordPress is... Moderate Unreviewed

CVE-2024-11685 was published Nov 28, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

109,225 advisories