GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,459
Composer 4,164
Erlang 30
GitHub Actions 19
Go 1,973
Maven 5,149
npm 3,695
NuGet 654
pip 3,312
Pub 11
RubyGems 881
Rust 831
Swift 35

Unreviewed advisories

All unreviewed 232,372

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

232,372 advisories

Filter by severity

Sort by

Least recently updated

JeecgBoot v3.7.1 was discovered to contain a SQL injection vulnerability via the component ... Critical Unreviewed

CVE-2024-48307 was published Oct 31, 2024

The Easy SVG Upload plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG... Moderate Unreviewed

CVE-2024-9708 was published Oct 31, 2024

The Woo Manage Fraud Orders plugin for WordPress is vulnerable to Sensitive Information Exposure... Moderate Unreviewed

CVE-2024-10544 was published Oct 31, 2024

A vulnerability was found in SourceCodester Airport Booking Management System 1.0 and classified... Moderate Unreviewed

CVE-2024-10559 was published Oct 31, 2024

A vulnerability, which was classified as critical, was found in Codezips Pet Shop Management... Moderate Unreviewed

CVE-2024-10556 was published Oct 31, 2024

A vulnerability has been found in code-projects Blood Bank Management System 1.0 and classified... Moderate Unreviewed

CVE-2024-10557 was published Oct 31, 2024

A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been classified as... Moderate Unreviewed

CVE-2024-10561 was published Oct 31, 2024

An issue in Ethereum v.1.12.2 allows remote attacker to execute arbitrary code via the Owned... Critical Unreviewed

CVE-2024-51424 was published Oct 30, 2024

Insecure Permissions vulnerability in Ethereum v.1.12.2 allows a remote attacker to escalate... High Unreviewed

CVE-2024-51425 was published Oct 30, 2024

An issue in Ethereum v.1.12.2 allows remote attacker to execute arbitrary code via the PepeGxng... Critical Unreviewed

CVE-2024-51427 was published Oct 30, 2024

Insecure Permissions vulnerability in Ethereum v.1.12.2 allows a remote attacker to escalate... High Unreviewed

CVE-2024-51426 was published Oct 30, 2024

http.zig commit 76cf5 was discovered to contain a CRLF injection vulnerability via the url... Unknown Unreviewed

CVE-2023-52066 was published Oct 30, 2024

A Server-Side Request Forgery (SSRF) vulnerability has been identified in eladmin 2.7 and earlier... Moderate Unreviewed

CVE-2024-51242 was published Oct 30, 2024

The eladmin v2.7 and before contains a remote code execution (RCE) vulnerability that can control... High Unreviewed

CVE-2024-51243 was published Oct 30, 2024

Cross Site Scripting vulnerability in Shenzhen Interconnection Harbor Network Technology Co., Ltd... Moderate Unreviewed

CVE-2024-51419 was published Oct 30, 2024

Unrestricted File Upload in the Discussions tab in Operately v.0.1.0 allows a privileged user to... High Unreviewed

CVE-2024-48093 was published Oct 30, 2024

icecms <=3.4.7 has a File Upload vulnerability in FileUtils.java,uploadFile. Critical Unreviewed

CVE-2024-48202 was published Oct 30, 2024

xtreme1 <= v0.9.1 contains a Server-Side Request Forgery (SSRF) vulnerability in the /api/data... Moderate Unreviewed

CVE-2024-48346 was published Oct 30, 2024

D-Link DSL6740C v6.TR069.20211230 was discovered to use insecure default credentials for... High Unreviewed

CVE-2024-48271 was published Oct 30, 2024

D-Link DSL6740C v6.TR069.20211230 was discovered to use an insecure default Wifi password,... Moderate Unreviewed

CVE-2024-48272 was published Oct 30, 2024

Cross Site Scripting vulnerability in PHPGurukul Doctor Appointment Management System v.1.0... Moderate Unreviewed

CVE-2024-48807 was published Oct 30, 2024

*Unrestricted file upload in /SASStudio/SASStudio/sasexec/{sessionID}/{InternalPath} in SAS... Unknown Unreviewed

CVE-2024-48734 was published Oct 30, 2024

SQL injection vulnerability in /SASStudio/sasexec/sessions/{sessionID}/sql in SAS Studio 9.4... Unknown Unreviewed

CVE-2024-48733 was published Oct 30, 2024

Directory Traversal in /SASStudio/sasexec/sessions/{sessionID}/workspace/{InternalPath} in SAS... High Unreviewed

CVE-2024-48735 was published Oct 30, 2024

phpgurukul Vehicle Record Management System v1.0 was discovered to contain a SQL injection... Moderate Unreviewed

CVE-2024-46531 was published Oct 30, 2024

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

232,372 advisories