GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,587
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,988
Maven 5,170
npm 3,704
NuGet 661
pip 3,332
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,189

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

92,245 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in GeekRMX Twitter @Anywhere Plus allows Stored... High Unreviewed

CVE-2024-51659 was published Nov 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in GentleSource Appointmind allows Stored XSS... High Unreviewed

CVE-2024-51679 was published Nov 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Henrik Hoff WP Course Manager allows Stored... High Unreviewed

CVE-2024-51658 was published Nov 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in FraudLabs Pro FraudLabs Pro SMS Verification... High Unreviewed

CVE-2024-51688 was published Nov 14, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Platform.Ly Platform.Ly Official allows Stored... High Unreviewed

CVE-2024-51687 was published Nov 14, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Ciprian Popescu W3P SEO allows Stored XSS.This... High Unreviewed

CVE-2024-51684 was published Nov 14, 2024

In lunary-ai/lunary version 1.2.7, there is a lack of rate limiting on the forgot password page,... High Unreviewed

CVE-2024-3760 was published Nov 14, 2024

A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in... High Unreviewed

CVE-2024-10394 was published Nov 14, 2024

A malicious server can crash the OpenAFS cache manager and other client utilities, and possibly... High Unreviewed

CVE-2024-10397 was published Nov 14, 2024

An authenticated user can provide a malformed ACL to the fileserver's StoreACL RPC, causing the... High Unreviewed

CVE-2024-10396 was published Nov 14, 2024

parisneo/lollms-webui version 9.6 is vulnerable to Cross-Site Scripting (XSS) and Open Redirect... High Unreviewed

CVE-2024-5125 was published Nov 14, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52371 was published Nov 14, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52378 was published Nov 14, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-52381 was published Nov 14, 2024

Missing Authorization vulnerability in KCT Ai Auto Tool Content Writing Assistant (Gemini Writer,... High Unreviewed

CVE-2024-52383 was published Nov 14, 2024

A memory corruption vulnerability exists in the affected products when parsing DFT files. Local... High Unreviewed

CVE-2024-6068 was published Nov 14, 2024

The default TCL Camera application exposes a provider vulnerable to path traversal vulnerability.... High Unreviewed

CVE-2024-11136 was published Nov 14, 2024

Incorrect control of environment variables in PostgreSQL PL/Perl allows an unprivileged database... High Unreviewed

CVE-2024-10979 was published Nov 14, 2024

The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to PHP Object... High Unreviewed

CVE-2024-10962 was published Nov 14, 2024

A heap buffer overflow was found in the virtio-snd device in QEMU. When reading input audio in... High Unreviewed

CVE-2024-7730 was published Nov 14, 2024

A null pointer dereference in Palo Alto Networks PAN-OS software on PA-800 Series, PA-3200 Series... High Unreviewed

CVE-2024-9472 was published Nov 14, 2024

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.0 prior to 17.3.7... High Unreviewed

CVE-2024-9693 was published Nov 14, 2024

A null pointer dereference vulnerability in Palo Alto Networks PAN-OS software enables an... High Unreviewed

CVE-2024-2551 was published Nov 14, 2024

Avigilon – CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') High Unreviewed

CVE-2024-45253 was published Nov 14, 2024

VaeMendis - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site... High Unreviewed

CVE-2024-45254 was published Nov 14, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

92,245 advisories