Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,267 advisories

Loading
Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to... High Unreviewed
CVE-2024-39573 was published Jul 1, 2024
MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection... High Unreviewed
CVE-2024-6376 was published Jul 1, 2024
Due to an improper input validation, an unauthenticated threat actor can send a malicious message... High Unreviewed
CVE-2024-5990 was published Jun 25, 2024
Improper input validation in CVC5 Solver v1.1.3 allows attackers to cause a Denial of Service ... High Unreviewed
CVE-2024-37794 was published Jun 17, 2024
In memcall_add of memlog.c, there is a possible buffer overflow due to improper input validation.... High Unreviewed
CVE-2024-32907 was published Jun 13, 2024
In prepare_response_locked of lwis_transaction.c, there is a possible out of bounds write due to... High Unreviewed
CVE-2024-32903 was published Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally... High Unreviewed
CVE-2024-32860 was published Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally... High Unreviewed
CVE-2024-32859 was published Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally... High Unreviewed
CVE-2024-32858 was published Jun 13, 2024
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an... High Unreviewed
CVE-2024-34109 was published Jun 13, 2024
Windows Wi-Fi Driver Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30078 was published Jun 11, 2024
Win32k Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30087 was published Jun 11, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... High Unreviewed
CVE-2024-35212 was published Jun 11, 2024
Import functionality is vulnerable to DNS rebinding attacks between verification and processing... High Unreviewed
CVE-2024-36471 was published Jun 11, 2024
An issue was discovered in Samsung Mobile Processor Exynos 2200, Exynos 1480, Exynos 2400. It... High Unreviewed
CVE-2024-31959 was published Jun 7, 2024
In mintplex-labs/anything-llm, a vulnerability exists in the thread update process that allows... High Unreviewed
CVE-2024-3150 was published Jun 6, 2024
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of... High Unreviewed
CVE-2024-36734 was published Jun 6, 2024
An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when... High Unreviewed
CVE-2024-36740 was published Jun 6, 2024
mintplex-labs/anything-llm is vulnerable to multiple security issues due to improper input... High Unreviewed
CVE-2024-3152 was published Jun 6, 2024
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of... High Unreviewed
CVE-2024-36737 was published Jun 6, 2024
An issue in the oneflow.scatter_nd parameter OneFlow-Inc. Oneflow v0.9.1 allows attackers to... High Unreviewed
CVE-2024-36742 was published Jun 6, 2024
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6... High Unreviewed
CVE-2024-23668 was published Jun 3, 2024
MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service High Unreviewed
CVE-2024-36390 was published Jun 2, 2024
In mintplex-labs/anything-llm, a vulnerability exists due to improper input validation in the... High Unreviewed
CVE-2024-4287 was published May 20, 2024
A potential vulnerability has been identified for OpenText Operations Bridge Reporter. The... High Unreviewed
CVE-2021-22508 was published May 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database