Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

4,845 advisories

Loading
IBM Security Verify Access OIDC Provider 22.09 through 23.03 could disclose sensitive information... Moderate Unreviewed
CVE-2024-22338 was published May 31, 2024
TYPO3 Brute Force Protection Bypass in backend login Moderate
GHSA-jqr8-q455-xx45 was published for typo3/cms (Composer) May 30, 2024
Symfony has unsafe methods in the Request class Moderate
CVE-2015-2309 was published for symfony/http-foundation (Composer) May 30, 2024
Symfony has a security issue when parsing the Authorization header Moderate
CVE-2014-6061 was published for symfony/http-foundation (Composer) May 30, 2024
silverstripe/framework uploaded PHP script execution in assets Moderate
GHSA-f43j-8hq4-2xj9 was published for silverstripe/framework (Composer) May 27, 2024
Improper input validation for some Intel(R) DLB driver software before version 8.5.0 may allow an... Moderate Unreviewed
CVE-2024-22015 was published May 16, 2024
Improper input validation in firmware for some Intel(R) FPGA products before version 2.9.1 may... Moderate Unreviewed
CVE-2024-22390 was published May 16, 2024
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may... Moderate Unreviewed
CVE-2023-47855 was published May 16, 2024
Improper input validation for some Intel(R) PROSet/Wireless WiFi software for linux before... Moderate Unreviewed
CVE-2023-47210 was published May 16, 2024
Improper input validation in Intel(R) Media SDK software all versions may allow an authenticated... Moderate Unreviewed
CVE-2023-48368 was published May 16, 2024
Improper input validation for some Intel(R) PROSet/Wireless WiFi software before version 23.20... Moderate Unreviewed
CVE-2023-38417 was published May 16, 2024
Improper input validation of EpsdSrMgmtConfig in UEFI firmware for some Intel(R) Server Board... Moderate Unreviewed
CVE-2023-22662 was published May 16, 2024
Laravel Guard bypass in Eloquent models Moderate
GHSA-44pg-c29v-hp6r was published for laravel/framework (Composer) May 15, 2024
Laravel Risk of mass-assignment vulnerabilities Moderate
GHSA-rj3w-99gc-8j58 was published for laravel/framework (Composer) May 15, 2024
Laravel Risk of mass-assignment vulnerabilities Moderate
GHSA-cc2w-ghc5-m5qr was published for illuminate/database (Composer) May 15, 2024
A vulnerability in Cisco AppDynamics Network Visibility Agent could allow an unauthenticated,... Moderate Unreviewed
CVE-2024-20394 was published May 15, 2024
File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The... Moderate Unreviewed
CVE-2024-3488 was published May 15, 2024
A Header Injection vulnerability in the JFrog platform in versions below 7.85.0 (SaaS) and 7.84.7... Moderate Unreviewed
CVE-2024-2248 was published May 15, 2024
Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an... Moderate Unreviewed
CVE-2024-3044 was published May 14, 2024
Microsoft Power BI Client JavaScript SDK Information Disclosure Vulnerability Moderate
CVE-2024-30054 was published for Microsoft.PowerBI.JavaScript (NuGet) May 14, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-29998 was published May 14, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-30002 was published May 14, 2024
Dell PowerScale OneFS versions 8.2.x through 9.7.0.1 contains an improper input validation... Moderate Unreviewed
CVE-2024-25970 was published May 14, 2024
A low privileged remote attacker... Moderate Unreviewed
CVE-2024-28135 was published May 14, 2024
A Segmentation Fault issue discovered in Samsung Open Source Escargot JavaScript engine ... Moderate Unreviewed
CVE-2024-32672 was published May 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database