GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
358 advisories
Filter by severity
Azure CycleCloud Remote Code Execution Vulnerability
Critical
Unreviewed
CVE-2024-43602
was published
Nov 12, 2024
A vulnerability classified as critical was found in Tongda OA 11.2/11.3/11.4/11.5/11.6. This...
Moderate
Unreviewed
CVE-2024-10598
was published
Nov 1, 2024
Improper authorization in some Intel(R) PM software may allow a privileged user to potentially...
Moderate
Unreviewed
CVE-2023-38135
was published
Oct 25, 2024
The Mapster WP Maps plugin for WordPress is vulnerable to unauthorized modification of data that...
High
Unreviewed
CVE-2024-9235
was published
Oct 25, 2024
The MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress...
Moderate
Unreviewed
CVE-2024-9531
was published
Oct 24, 2024
Certain configuration available in the communication channel for encoders could expose sensitive...
Moderate
Unreviewed
CVE-2024-22388
was published
Feb 7, 2024
Privileges are not fully verified server-side, which can be abused by a user with limited...
High
Unreviewed
CVE-2024-28029
was published
Mar 22, 2024
An improper authorization vulnerability exists in the mintplex-labs/anything-llm application,...
Critical
Unreviewed
CVE-2024-3033
was published
Jun 6, 2024
Information disclosure while sending implicit broadcast containing APP launch information.
Moderate
Unreviewed
CVE-2024-38425
was published
Oct 7, 2024
The WooCommerce Smart Coupons plugin for WordPress is vulnerable to authorization bypass due to a...
Moderate
Unreviewed
CVE-2020-36841
was published
Oct 16, 2024
Sensitive data can be extracted from HID iCLASS SE reader configuration cards. This could...
Moderate
Unreviewed
CVE-2024-23806
was published
Feb 7, 2024
Parameter verification vulnerability in the installd module. Successful exploitation of this...
Critical
Unreviewed
CVE-2023-39399
was published
Aug 13, 2023
Parameter verification vulnerability in the installd module. Successful exploitation of this...
Critical
Unreviewed
CVE-2023-39398
was published
Aug 13, 2023
Parameter verification vulnerability in the installd module. Successful exploitation of this...
Critical
Unreviewed
CVE-2023-39403
was published
Aug 13, 2023
Parameter verification vulnerability in the installd module. Successful exploitation of this...
Critical
Unreviewed
CVE-2023-39400
was published
Aug 13, 2023
Parameter verification vulnerability in the installd module. Successful exploitation of this...
Critical
Unreviewed
CVE-2023-39402
was published
Aug 13, 2023
Parameter verification vulnerability in the installd module. Successful exploitation of this...
Critical
Unreviewed
CVE-2023-39401
was published
Aug 13, 2023
Windows Kerberos Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38129
was published
Oct 8, 2024
The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin...
Moderate
Unreviewed
CVE-2024-5053
was published
Sep 1, 2024
An authorization vulnerability exists in GitLab versions 14.0 prior to 16.6.6, 16.7 prior to 16.7...
Moderate
Unreviewed
CVE-2024-0456
was published
Jan 26, 2024
An issue has been discovered in GitLab EE Premium and Ultimate affecting versions 16.4.3, 16.5.3,...
Moderate
Unreviewed
CVE-2023-6564
was published
Feb 8, 2024
An issue has been discovered in GitLab affecting all versions starting from 9.3 before 16.4.4,...
Moderate
Unreviewed
CVE-2023-5061
was published
Dec 15, 2023
An improper authorization issue has been discovered in GitLab CE/EE affecting all versions...
Moderate
Unreviewed
CVE-2023-2233
was published
Sep 29, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 16.4 before 16.7.6...
Moderate
Unreviewed
CVE-2024-0861
was published
Feb 22, 2024
A vulnerability in the web UI feature of Cisco IOS Software and Cisco IOS XE Software could allow...
Moderate
Unreviewed
CVE-2024-20414
was published
Sep 25, 2024
ProTip!
Advisories are also available from the
GraphQL API