GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
2,338 advisories
Filter by severity
The XINJE XL5E-16T and XD5E-24R-E programmable logic controllers V3.5.3b-V3.7.2a have a...
High
Unreviewed
CVE-2024-50954
was published
Jan 15, 2025
** DISPUTED ** PHP remote file inclusion vulnerability in includes/functions.php in phpSCMS 0.0...
High
Unreviewed
CVE-2007-5565
was published
May 1, 2022
** DISPUTED ** PHP remote file inclusion vulnerability in lib/classes/offl_nflteam.php in Online...
High
Unreviewed
CVE-2007-5097
was published
May 1, 2022
** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in Nucleus 3.23 allow remote...
High
Unreviewed
CVE-2006-3136
was published
May 1, 2022
** DISPUTED ** PHP remote file inclusion vulnerability in libs/Smarty.class.php in Smarty 2.6.9...
High
Unreviewed
CVE-2006-7105
was published
May 1, 2022
** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in Guestbook Script 1.9 allow...
High
Unreviewed
CVE-2007-4290
was published
May 1, 2022
Arbitrary File Read Vulnerability in Apache Dolphinscheduler
High
CVE-2023-51770
was published
for
org.apache.dolphinscheduler:dolphinscheduler
(Maven)
Feb 20, 2024
The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows...
High
Unreviewed
CVE-2013-3894
was published
May 13, 2022
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute...
High
Unreviewed
CVE-2005-3302
was published
May 1, 2022
Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5; Silverlight 5 before 5.1.20513.0;...
High
Unreviewed
CVE-2013-3129
was published
May 13, 2022
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5, iOS 16.7...
High
Unreviewed
CVE-2024-27856
was published
Jan 15, 2025
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval...
High
Unreviewed
CVE-2023-33440
was published
May 26, 2023
Windows Search Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21292
was published
Jan 14, 2025
Microsoft Power Automate Remote Code Execution Vulnerability
High
Unreviewed
CVE-2025-21187
was published
Jan 14, 2025
The administrator is able to configure an insecure captive portal script
High
Unreviewed
CVE-2024-9132
was published
Jan 11, 2025
An issue was discovered in South River Technologies TitanFTP NextGen server that allows for a...
High
Unreviewed
CVE-2023-27744
was published
Jun 2, 2023
Buffer Overflow vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2-...
High
Unreviewed
CVE-2024-30962
was published
Dec 6, 2024
Reportlab vulnerable to remote code execution
High
CVE-2023-33733
was published
for
reportlab
(pip)
Jun 5, 2023
An authenticated arbitrary file upload vulnerability in the component /module_admin/upload.php of...
High
Unreviewed
CVE-2024-53564
was published
Dec 2, 2024
The Post Saint: ChatGPT, GPT4, DALL-E, Stable Diffusion, Pexels, Dezgo AI Text & Image Generator...
High
Unreviewed
CVE-2024-12471
was published
Jan 7, 2025
A potential security vulnerability has been identified with a version of the HP Softpaq installer...
High
Unreviewed
CVE-2019-16283
was published
Jun 9, 2023
The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode...
High
Unreviewed
CVE-2024-11733
was published
Jan 4, 2025
Server Side Template Injection (SSTI) via Twig escape handler
High
CVE-2024-28119
was published
for
getgrav/grav
(Composer)
Mar 22, 2024
Server Side Template Injection (SSTI)
High
CVE-2024-28118
was published
for
getgrav/grav
(Composer)
Mar 22, 2024
Server Side Template Injection (SSTI)
High
CVE-2024-28117
was published
for
getgrav/grav
(Composer)
Mar 22, 2024
ProTip!
Advisories are also available from the
GraphQL API