GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,974
Composer 4,285
Erlang 31
GitHub Actions 21
Go 2,057
Maven 5,238
npm 3,742
NuGet 668
pip 3,422
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,377

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

94,027 advisories

Filter by severity

Sort by

Least recently updated

TP-Link JetStream Smart Switch TL-SG2210P 5.0 Build 20211201 allows attackers to escalate... High Unreviewed

CVE-2023-43318 was published Mar 6, 2024

Improper privilege management in Just-in-time (JIT) elevation module in Devolutions Server 2023.3... High Unreviewed

CVE-2024-1764 was published Mar 6, 2024

The ParseAddressList function incorrectly handles comments (text within parentheses) within... High Unreviewed

CVE-2024-24784 was published Mar 6, 2024

An issue in Teamwire Windows desktop client v.2.0.1 through v.2.4.0 allows a remote attacker to... High Unreviewed

CVE-2024-24278 was published Mar 6, 2024

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 17.4... High Unreviewed

CVE-2024-23296 was published Mar 5, 2024

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.... High Unreviewed

CVE-2024-25613 was published Mar 5, 2024

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.... High Unreviewed

CVE-2024-1356 was published Mar 5, 2024

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.... High Unreviewed

CVE-2024-25612 was published Mar 5, 2024

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 16.7... High Unreviewed

CVE-2024-23225 was published Mar 5, 2024

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.... High Unreviewed

CVE-2024-25611 was published Mar 5, 2024

In Foxit PDF Reader before 2024.1 and PDF Editor before 2024.1, code execution via JavaScript... High Unreviewed

CVE-2024-25858 was published Mar 5, 2024

VMware ESXi contains an out-of-bounds write vulnerability. A malicious actor with privileges... High Unreviewed

CVE-2024-22254 was published Mar 5, 2024

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI... High Unreviewed

CVE-2024-22255 was published Mar 5, 2024

A remote code execution vulnerability has been identified in the User Defined Tags module of CMS... High Unreviewed

CVE-2024-27622 was published Mar 5, 2024

A CWE-1269 “Product Released in Non-Release Configuration” vulnerability in the Django web... High Unreviewed

CVE-2023-5457 was published Mar 5, 2024

A CWE-798 “Use of Hard-coded Credentials” vulnerability in the MariaDB database of the web... High Unreviewed

CVE-2023-5456 was published Mar 5, 2024

A CWE-122 “Heap-based Buffer Overflow” vulnerability in the “logger_generic” function of the ... High Unreviewed

CVE-2023-45591 was published Mar 5, 2024

The Auto Refresh Single Page plugin for WordPress is vulnerable to PHP Object Injection in all... High Unreviewed

CVE-2024-1731 was published Mar 5, 2024

libheif <= 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an... High Unreviewed

CVE-2024-25269 was published Mar 5, 2024

The Vimeography: Vimeo Video Gallery WordPress Plugin plugin for WordPress is vulnerable to PHP... High Unreviewed

CVE-2024-0825 was published Mar 5, 2024

iA Path Traversal vulnerability exists in iDURAR v2.0.0, that allows unauthenticated attackers to... High Unreviewed

CVE-2024-25164 was published Mar 5, 2024

The encrypted subject of an email message could be incorrectly and permanently assigned to an... High Unreviewed

CVE-2024-1936 was published Mar 5, 2024

Customer Support System v1 was discovered to contain a SQL injection vulnerability via the... High Unreviewed

CVE-2023-49548 was published Mar 5, 2024

SQL Injection vulnerability in Baizhuo Network Smart s200 Management Platform v.S200 allows a... High Unreviewed

CVE-2024-27718 was published Mar 5, 2024

Customer Support System v1 was discovered to contain a SQL injection vulnerability via the email... High Unreviewed

CVE-2023-49546 was published Mar 5, 2024

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

94,027 advisories