GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
109,275 advisories
Filter by severity
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in IDE...
Moderate
Unreviewed
CVE-2024-53768
was published
Nov 30, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-53787
was published
Nov 30, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-53788
was published
Nov 30, 2024
Server-Side Request Forgery (SSRF) vulnerability in Gabe Livan Asset CleanUp: Page Speed Booster...
Moderate
Unreviewed
CVE-2024-53738
was published
Nov 30, 2024
A vulnerability classified as problematic was found in Tenda FH451, FH1201, FH1202 and FH1206 up...
Moderate
Unreviewed
CVE-2024-12002
was published
Nov 30, 2024
A vulnerability classified as problematic has been found in code-projects Wazifa System 1.0....
Moderate
Unreviewed
CVE-2024-12001
was published
Nov 30, 2024
A vulnerability was found in code-projects Blood Bank System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-12000
was published
Nov 30, 2024
A vulnerability was found in code-projects Farmacia 1.0. It has been declared as critical. This...
Moderate
Unreviewed
CVE-2024-11998
was published
Nov 30, 2024
A vulnerability was found in code-projects Farmacia 1.0 and classified as problematic. Affected...
Moderate
Unreviewed
CVE-2024-11996
was published
Nov 30, 2024
A vulnerability was found in code-projects Farmacia 1.0. It has been classified as problematic....
Moderate
Unreviewed
CVE-2024-11997
was published
Nov 30, 2024
The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Reflected...
Moderate
Unreviewed
CVE-2024-11252
was published
Nov 30, 2024
stalld through 1.19.7 allows local users to cause a denial of service (file overwrite) via a /tmp...
Moderate
Unreviewed
CVE-2024-54159
was published
Nov 30, 2024
A vulnerability has been found in code-projects Farmacia 1.0 and classified as problematic....
Moderate
Unreviewed
CVE-2024-11995
was published
Nov 29, 2024
FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows...
Moderate
Unreviewed
CVE-2024-36619
was published
Nov 29, 2024
Zulip 8.3 is vulnerable to Cross Site Scripting (XSS) via the replace_emoji_with_text function in...
Moderate
Unreviewed
CVE-2024-36625
was published
Nov 29, 2024
In prestashop 8.1.4, a NULL pointer dereference was identified in the math_round function within...
Moderate
Unreviewed
CVE-2024-36626
was published
Nov 29, 2024
WithSecure Elements Agent for Mac before 24.3, MDR before 24.3, and Elements Client Security for...
Moderate
Unreviewed
CVE-2024-47193
was published
Nov 29, 2024
In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security...
Moderate
Unreviewed
CVE-2024-35369
was published
Nov 29, 2024
Zulip 8.3 is vulnerable to Cross Site Scripting (XSS) via the construct_copy_div function in...
Moderate
Unreviewed
CVE-2024-36624
was published
Nov 29, 2024
A Cross-Site Scripting (XSS) vulnerability in SurgeMail v78c2 could allow an attacker to execute...
Moderate
Unreviewed
CVE-2024-11990
was published
Nov 29, 2024
A XML External Entity (XXE) vulnerability has been identified in Easy Tax Client Software 2023 1...
Moderate
Unreviewed
CVE-2024-9044
was published
Nov 29, 2024
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p22, <2...
Moderate
Unreviewed
CVE-2024-47094
was published
Nov 29, 2024
Cross-site request forgery (CSRF) vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to...
Moderate
Unreviewed
CVE-2024-11014
was published
Nov 29, 2024
The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid, Carousel and...
Moderate
Unreviewed
CVE-2024-10980
was published
Nov 29, 2024
The Photo Gallery by 10Web WordPress plugin before 1.8.31 does not sanitise and escape some of...
Moderate
Unreviewed
CVE-2024-10704
was published
Nov 29, 2024
ProTip!
Advisories are also available from the
GraphQL API