GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,079
Erlang
29
GitHub Actions
19
Go
1,905
Maven
5,000+
npm
3,636
NuGet
638
pip
3,254
Pub
10
RubyGems
867
Rust
819
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
104,715 advisories
Filter by severity
The Premium Packages – Sell Digital Products Securely plugin for WordPress is vulnerable to Cross...
Moderate
Unreviewed
CVE-2024-7386
was published
Sep 25, 2024
Due to an allocation of resources without limits, an uncontrolled resource consumption...
Moderate
Unreviewed
CVE-2023-51393
was published
Feb 23, 2024
A memory leak in the Silicon Labs' Bluetooth stack for EFR32 products may cause memory to be...
Moderate
Unreviewed
CVE-2024-0240
was published
Feb 15, 2024
An issue was discovered in ImfHpRegFilter.sys in IOBit Malware Fighter version 8.0.2, allows...
Moderate
Unreviewed
CVE-2020-24089
was published
Sep 20, 2023
Multiple buffer overflow vulnerabilities in SiLabs Z/IP Gateway SDK version 7.18.01 and earlier...
Moderate
Unreviewed
CVE-2023-0970
was published
Jun 21, 2023
Missing Encryption of Security Keys vulnerability in Silicon Labs Ember ZNet SDK on 32 bit, ARM ...
Moderate
Unreviewed
CVE-2023-41096
was published
Oct 26, 2023
Forcing the Bluetooth LE stack to segment 'prepare write response' packets can lead to an out-of...
Moderate
Unreviewed
CVE-2023-3024
was published
Sep 29, 2023
A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly...
Moderate
Unreviewed
CVE-2024-20475
was published
Sep 25, 2024
A vulnerability in Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS)...
Moderate
Unreviewed
CVE-2024-20508
was published
Sep 25, 2024
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to...
Moderate
Unreviewed
CVE-2024-20434
was published
Sep 25, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Dnesscarkey Use Any Font allows Cross Site...
Moderate
Unreviewed
CVE-2024-47305
was published
Sep 25, 2024
A vulnerability in the web UI feature of Cisco IOS Software and Cisco IOS XE Software could allow...
Moderate
Unreviewed
CVE-2024-20414
was published
Sep 25, 2024
Cross-Site Request Forgery (CSRF) vulnerability in GiveWP.This issue affects GiveWP: from n/a...
Moderate
Unreviewed
CVE-2024-47315
was published
Sep 25, 2024
A vulnerability in the UDP packet validation code of Cisco SD-WAN vEdge Software could allow an...
Moderate
Unreviewed
CVE-2024-20496
was published
Sep 25, 2024
A vulnerability in the access control list (ACL) programming of Cisco IOS Software running on...
Moderate
Unreviewed
CVE-2024-20465
was published
Sep 25, 2024
A vulnerability in the Central Web Authentication (CWA) feature of Cisco IOS XE Software for...
Moderate
Unreviewed
CVE-2024-20510
was published
Sep 25, 2024
An information leak in kokoroe_members card Line 13.6.1 allows attackers to obtain the channel...
Moderate
Unreviewed
CVE-2023-39045
was published
Sep 20, 2023
A memory leak in the EFR32 Bluetooth LE stack 5.1.0 through 5.1.1 allows an attacker to send an...
Moderate
Unreviewed
CVE-2023-2683
was published
Jun 15, 2023
The Chatbot with ChatGPT WordPress plugin before 2.4.6 does not have proper authorization in one...
Moderate
Unreviewed
CVE-2024-6845
was published
Sep 25, 2024
The adstxt Plugin WordPress plugin through 1.0.0 does not have CSRF check in place when updating...
Moderate
Unreviewed
CVE-2024-7892
was published
Sep 25, 2024
This issue was addressed with improved data protection. This issue is fixed in iOS 18 and iPadOS...
Moderate
Unreviewed
CVE-2024-40863
was published
Sep 17, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.7, macOS...
Moderate
Unreviewed
CVE-2024-44125
was published
Sep 17, 2024
Cross-site scripting (XSS) vulnerability in the geo search widget in the Geo Mashup plugin before...
Moderate
Unreviewed
CVE-2015-1383
was published
May 17, 2022
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.7, macOS...
Moderate
Unreviewed
CVE-2024-40860
was published
Sep 17, 2024
This issue was addressed through improved state management. This issue is fixed in Safari 18,...
Moderate
Unreviewed
CVE-2024-40857
was published
Sep 17, 2024
ProTip!
Advisories are also available from the
GraphQL API