GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,403

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

20,429 advisories

Filter by severity

Sort by

Least recently updated

Potential race conditions in IndexedDB could have caused memory corruption, leading to a... Critical Unreviewed

CVE-2024-10468 was published Oct 29, 2024

Focus was incorrectly allowing internal links to utilize the app scheme used for deeplinking,... Critical Unreviewed

CVE-2024-10474 was published Oct 29, 2024

Missing Authorization vulnerability in GRÜN Software Group GmbH GRÜN spendino Spendenformular... Critical Unreviewed

CVE-2024-50476 was published Oct 29, 2024

: Incorrect Privilege Assignment vulnerability in Udit Rawat Exam Matrix allows Privilege... Critical Unreviewed

CVE-2024-50485 was published Oct 29, 2024

Missing Authorization vulnerability in Szabolcs Szecsenyi PegaPoll allows Accessing Functionality... Critical Unreviewed

CVE-2024-50490 was published Oct 29, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Amin Omer Sudan Payment Gateway... Critical Unreviewed

CVE-2024-50494 was published Oct 29, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Chetan Khandla Woocommerce... Critical Unreviewed

CVE-2024-50482 was published Oct 29, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in masterhomepage Automatic... Critical Unreviewed

CVE-2024-50493 was published Oct 29, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Devsoft Baltic OÜ SurveyJS: Drag... Critical Unreviewed

CVE-2024-50427 was published Oct 29, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in adirectory aDirectory allows... Critical Unreviewed

CVE-2024-50420 was published Oct 29, 2024

Missing Authorization vulnerability in Scott Gamon Signup Page allows Privilege Escalation.This... Critical Unreviewed

CVE-2024-50475 was published Oct 29, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in azexo Marketing Automation by... Critical Unreviewed

CVE-2024-50480 was published Oct 29, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Ajar Productions Ajar in5 Embed... Critical Unreviewed

CVE-2024-50473 was published Oct 29, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in mahlamusa Multi Purpose Mail... Critical Unreviewed

CVE-2024-50484 was published Oct 29, 2024

IBM Flexible Service Processor (FSP) FW860.00 through FW860.B3, FW950.00 through FW950.C0, FW1030... Critical Unreviewed

CVE-2024-45656 was published Oct 29, 2024

The issue was addressed with improved input sanitization. This issue is fixed in macOS Ventura 13... Critical Unreviewed

CVE-2024-44256 was published Oct 29, 2024

A permissions issue was addressed by removing vulnerable code and adding additional checks. This... Critical Unreviewed

CVE-2024-44217 was published Oct 29, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in WidgiLabs Plugin Propagator... Critical Unreviewed

CVE-2024-50495 was published Oct 28, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Web and Print Design AR For... Critical Unreviewed

CVE-2024-50496 was published Oct 28, 2024

LyLme Spage <=1.6.0 is vulnerable to SQL Injection via /admin/group.php. Critical Unreviewed

CVE-2024-48356 was published Oct 28, 2024

A custom URL scheme handling issue was addressed with improved input validation. This issue is... Critical Unreviewed

CVE-2024-40867 was published Oct 28, 2024

LyLme Spage 1.2.0 through 1.6.0 is vulnerable to SQL Injection via /admin/apply.php. Critical Unreviewed

CVE-2024-48357 was published Oct 28, 2024

The MRBS version 1.5.0 has an SQL injection vulnerability in the edit_entry_handler.php file,... Critical Unreviewed

CVE-2024-48465 was published Oct 28, 2024

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2024-50479 was published Oct 28, 2024

Authorization Bypass Through User-Controlled Key vulnerability in Meetup allows Privilege... Critical Unreviewed

CVE-2024-50483 was published Oct 28, 2024

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

20,429 advisories