Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

119,931 advisories

Loading
An AirVantage online Warranty Checker tool vulnerability could allow an attacker to perform bulk... Moderate Unreviewed
CVE-2023-31280 was published Dec 21, 2024
The Feedify – Web Push Notifications plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed
CVE-2024-11811 was published Dec 21, 2024
A vulnerability classified as problematic was found in Emlog Pro up to 2.4.1. Affected by this... Moderate Unreviewed
CVE-2024-12845 was published Dec 21, 2024
Piranha CMS Cross-site Scripting vulnerability Moderate
CVE-2024-55341 was published for Piranha (NuGet) Dec 20, 2024
Piranha CMS Cross-site Scripting vulnerability Moderate
CVE-2024-55342 was published for Piranha (NuGet) Dec 20, 2024
There is a cross-site scripting vulnerability in the management console of Absolute Secure Access... Moderate Unreviewed
CVE-2024-40875 was published Dec 20, 2024
A vulnerability was found in Emlog Pro up to 2.4.1. It has been classified as problematic. This... Moderate Unreviewed
CVE-2024-12841 was published Dec 20, 2024
A vulnerability classified as problematic has been found in Emlog Pro up to 2.4.1. Affected is an... Moderate Unreviewed
CVE-2024-12844 was published Dec 20, 2024
A vulnerability was found in Emlog Pro up to 2.4.1. It has been declared as problematic. This... Moderate Unreviewed
CVE-2024-12842 was published Dec 20, 2024
A vulnerability was found in Emlog Pro up to 2.4.1. It has been rated as problematic. This issue... Moderate Unreviewed
CVE-2024-12843 was published Dec 20, 2024
Oqtane Framework Insecure Direct Object Reference vulnerability Moderate
CVE-2024-55471 was published for Oqtane.Framework (NuGet) Dec 20, 2024
A server-side request forgery exists in Satellite. When a PUT HTTP request is made to ... Moderate Unreviewed
CVE-2024-12840 was published Dec 20, 2024
In JetBrains TeamCity before 2024.12 backup file exposed user credentials and session cookies Moderate Unreviewed
CVE-2024-56353 was published Dec 20, 2024
In JetBrains TeamCity before 2024.12 access tokens were not revoked after removing user roles Moderate Unreviewed
CVE-2024-56351 was published Dec 20, 2024
In JetBrains TeamCity before 2024.12 password field value were accessible to users with view... Moderate Unreviewed
CVE-2024-56354 was published Dec 20, 2024
In JetBrains TeamCity before 2024.12 missing Content-Type header in RemoteBuildLogController... Moderate Unreviewed
CVE-2024-56355 was published Dec 20, 2024
In JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projects Moderate Unreviewed
CVE-2024-56350 was published Dec 20, 2024
In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of... Moderate Unreviewed
CVE-2024-56348 was published Dec 20, 2024
In JetBrains TeamCity before 2024.12 insecure XMLParser configuration could lead to potential XXE... Moderate Unreviewed
CVE-2024-56356 was published Dec 20, 2024
In JetBrains TeamCity before 2024.12 stored XSS was possible via image name on the agent details... Moderate Unreviewed
CVE-2024-56352 was published Dec 20, 2024
In JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify... Moderate Unreviewed
CVE-2024-56349 was published Dec 20, 2024
IBM Security Directory Integrator 7.2.0 through 7.2.0.13 and 10.0.0 through 10.0.3 could allow a... Moderate Unreviewed
CVE-2024-28767 was published Dec 20, 2024
uptime-kuma vulnerable to Local File Inclusion (LFI) via Improper URL Handling in `Real-Browser` monitor Moderate
CVE-2024-56331 was published for uptime-kuma (npm) Dec 20, 2024
griisemine
The Maintenance & Coming Soon Redirect Animation plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-9503 was published Dec 20, 2024
The WP SHAPES plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File... Moderate Unreviewed
CVE-2024-9619 was published Dec 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database