Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

91,910 advisories

Loading
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11065 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11066 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11063 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11064 was published Nov 11, 2024
The D-Link DSL6740C modem has a Path Traversal Vulnerability, allowing unauthenticated remote... High Unreviewed
CVE-2024-11067 was published Nov 11, 2024
Webopac from Grand Vice info does not properly validate uploaded file types, allowing remote... High Unreviewed
CVE-2024-11017 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11062 was published Nov 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51837 was published Nov 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51882 was published Nov 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51845 was published Nov 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51820 was published Nov 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51843 was published Nov 11, 2024
A vulnerability classified as critical was found in Tenda AC10 16.03.10.13. Affected by this... High Unreviewed
CVE-2024-11061 was published Nov 11, 2024
A vulnerability, which was classified as critical, was found in Tenda AC10 16.03.10.13. Affected... High Unreviewed
CVE-2024-11056 was published Nov 10, 2024
The The WP Photo Album Plus plugin for WordPress is vulnerable to arbitrary shortcode execution... High Unreviewed
CVE-2024-10958 was published Nov 10, 2024
A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been rated as critical. Affected... High Unreviewed
CVE-2024-11048 was published Nov 10, 2024
A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been declared as critical.... High Unreviewed
CVE-2024-11047 was published Nov 10, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51606 was published Nov 9, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51608 was published Nov 9, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Lars Schenk Responsive Flickr Gallery allows... High Unreviewed
CVE-2024-51630 was published Nov 9, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51623 was published Nov 9, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Chaser324 Featured Posts Scroll allows Stored... High Unreviewed
CVE-2024-51647 was published Nov 9, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed
CVE-2024-51694 was published Nov 9, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed
CVE-2024-51698 was published Nov 9, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed
CVE-2024-51697 was published Nov 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database