GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,634
NuGet
638
pip
3,250
Pub
10
RubyGems
867
Rust
819
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,769 advisories
Filter by severity
Concrete CMS versions 9 through 9.3.3 and versions below 8.5.19 are vulnerable to stored XSS in...
Low
Unreviewed
CVE-2024-7398
was published
Sep 25, 2024
The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to user group add due to a...
Low
Unreviewed
CVE-2024-8350
was published
Sep 25, 2024
Concrete CMS versions 9.0.0 to 9.3.3 and below 8.5.19 are vulnerable to Stored XSS in Image...
Low
Unreviewed
CVE-2024-8291
was published
Sep 25, 2024
The W3 Total Cache plugin for WordPress is vulnerable to Sensitive Information Exposure in...
Low
Unreviewed
CVE-2023-5359
was published
Sep 25, 2024
IBM Aspera Console 3.4.0 through 3.4.4 could allow a remote attacker to obtain sensitive...
Low
Unreviewed
CVE-2022-43845
was published
Sep 25, 2024
Authentication Bypass by Spoofing vulnerability in Peter Hardy-vanDoorn Maintenance Redirect...
Low
Unreviewed
CVE-2024-45453
was published
Sep 23, 2024
A vulnerability was found in Stirling-Tools Stirling-PDF up to 0.28.3. It has been declared as...
Low
Unreviewed
CVE-2024-9075
was published
Sep 22, 2024
A flaw was found in QEMU, in the virtio-scsi, virtio-blk, and virtio-crypto devices. The size for...
Low
Unreviewed
CVE-2024-8612
was published
Sep 20, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An...
Low
Unreviewed
CVE-2024-44180
was published
Sep 17, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An...
Low
Unreviewed
CVE-2024-44139
was published
Sep 17, 2024
This issue was addressed with improved data protection. This issue is fixed in iOS 18 and iPadOS...
Low
Unreviewed
CVE-2024-40830
was published
Sep 17, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Low
Unreviewed
CVE-2024-40791
was published
Sep 17, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.1.7...
Low
Unreviewed
CVE-2024-6685
was published
Sep 17, 2024
Improper access control in Intel(R) RAID Web Console software all versions may allow an...
Low
Unreviewed
CVE-2024-36261
was published
Sep 16, 2024
Out-of-bounds read in UEFI firmware for some Intel(R) Processors may allow a privileged user to...
Low
Unreviewed
CVE-2023-25546
was published
Sep 16, 2024
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user...
Low
Unreviewed
CVE-2024-28170
was published
Sep 16, 2024
A vulnerability classified as critical has been found in TOTOLINK A720R 4.1.5. Affected is the...
Low
Unreviewed
CVE-2024-8869
was published
Sep 16, 2024
In JetBrains IntelliJ IDEA before 2024.1 hTML injection via the project name was possible
Low
Unreviewed
CVE-2024-46970
was published
Sep 16, 2024
The CMP CLI client in KeyFactor EJBCA before 8.3.1 has only 6 octets of salt, and is thus not...
Low
Unreviewed
CVE-2024-36066
was published
Sep 12, 2024
An issue has been discovered in GitLab affecting all versions starting from 17.1 to 17.1.7, 17.2...
Low
Unreviewed
CVE-2024-6446
was published
Sep 12, 2024
Affected versions of Octopus Server had a weak content security policy.
Low
Unreviewed
CVE-2024-1656
was published
Sep 11, 2024
An improperly implemented security check for standard vulnerability [CWE-358] in FortiADC Web...
Low
Unreviewed
CVE-2024-36511
was published
Sep 10, 2024
A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted...
Low
Unreviewed
CVE-2024-8443
was published
Sep 10, 2024
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All...
Low
Unreviewed
CVE-2024-37995
was published
Sep 10, 2024
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory...
Low
Unreviewed
CVE-2024-42425
was published
Sep 10, 2024
ProTip!
Advisories are also available from the
GraphQL API