GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,912
Composer 4,270
Erlang 31
GitHub Actions 21
Go 2,045
Maven 5,228
npm 3,737
NuGet 663
pip 3,415
Pub 12
RubyGems 891
Rust 868
Swift 36

Unreviewed advisories

All unreviewed 238,268

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

93,777 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery vulnerability in SMA Cluster Controller, affecting version 01.05.01.R.... High Unreviewed

CVE-2024-1889 was published Feb 26, 2024

Tencent Blueking CMDB v3.2.x to v3.9.x was discovered to contain a Server-Side Request Forgery ... High Unreviewed

CVE-2024-22873 was published Feb 26, 2024

A heap-based buffer overflow vulnerability exists in the GGUF library header.n_tensors... High Unreviewed

CVE-2024-21836 was published Feb 26, 2024

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been... High Unreviewed

CVE-2024-1876 was published Feb 26, 2024

A heap-based buffer overflow vulnerability exists in the GGUF library gguf_fread_str... High Unreviewed

CVE-2024-23496 was published Feb 26, 2024

A heap-based buffer overflow vulnerability exists in the GGUF library header.n_kv functionality... High Unreviewed

CVE-2024-23605 was published Feb 26, 2024

A heap-based buffer overflow vulnerability exists in the GGUF library info->ne functionality... High Unreviewed

CVE-2024-21802 was published Feb 26, 2024

User can send a chat that contains an XSS opportunity that will then run when the chat is sent... High Unreviewed

CVE-2024-0435 was published Feb 26, 2024

The Addon Library plugin for WordPress is vulnerable to unauthorized access of data due to a... High Unreviewed

CVE-2024-1710 was published Feb 26, 2024

As a manager, you should not be able to modify a series of settings. In the UI this is indeed... High Unreviewed

CVE-2024-0439 was published Feb 26, 2024

Theoretically, it would be possible for an attacker to brute-force the password for an instance... High Unreviewed

CVE-2024-0436 was published Feb 26, 2024

In the Linux kernel, the following vulnerability has been resolved: drivers/amd/pm: fix a use... High Unreviewed

CVE-2023-52469 was published Feb 26, 2024

Due to a mistake in error checking, Routinator will terminate when an incoming RTR connection is... High Unreviewed

CVE-2024-1622 was published Feb 26, 2024

A user with a `default` role given to them by the admin can sent `DELETE` HTTP requests to ... High Unreviewed

CVE-2024-0798 was published Feb 26, 2024

In the Linux kernel, the following vulnerability has been resolved: moxart: fix potential use... High Unreviewed

CVE-2022-48626 was published Feb 26, 2024

In the Linux kernel, the following vulnerability has been resolved: class: fix use-after-free in... High Unreviewed

CVE-2023-52468 was published Feb 26, 2024

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the... High Unreviewed

CVE-2023-49960 was published Feb 26, 2024

Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on... High Unreviewed

CVE-2024-21502 was published Feb 24, 2024

In the module "Survey TMA" (ecomiz_survey_tma) up to version 2.0.0 from Ecomiz for PrestaShop, a... High Unreviewed

CVE-2024-24309 was published Feb 24, 2024

SQL Injection vulnerability in CRMEB crmeb_java v.1.3.4 and before allows a remote attacker to... High Unreviewed

CVE-2024-25469 was published Feb 24, 2024

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability High Unreviewed

CVE-2024-26192 was published Feb 24, 2024

In the module "Generate barcode on invoice / delivery slip" (ecgeneratebarcode) from Ether... High Unreviewed

CVE-2024-24310 was published Feb 24, 2024

IBM Aspera Console 3.4.0 through 3.4.2 is vulnerable to SQL injection. A remote attacker could... High Unreviewed

CVE-2022-43842 was published Feb 23, 2024

A vulnerability was found in code-projects Library System 1.0. It has been rated as critical.... High Unreviewed

CVE-2024-1830 was published Feb 23, 2024

A vulnerability was found in SourceCodester Employee Management System 1.0 and classified as... High Unreviewed

CVE-2024-1833 was published Feb 23, 2024

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

93,777 advisories