GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,909
Composer 4,270
Erlang 31
GitHub Actions 21
Go 2,044
Maven 5,228
npm 3,736
NuGet 663
pip 3,414
Pub 12
RubyGems 891
Rust 868
Swift 36

Unreviewed advisories

All unreviewed 238,255

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

238,255 advisories

Filter by severity

Sort by

Least recently updated

Incorrect authorization vulnerability in HTTP POST method in Govee Home application on Android... Critical Unreviewed

CVE-2023-4617 was published Dec 19, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-37962 was published Dec 19, 2024

The hypervisor contains code to accelerate VGA memory accesses for HVM guests, when the (virtual)... Unknown Unreviewed

CVE-2024-45818 was published Dec 19, 2024

Under non-default configuration, a stack-based buffer overflow in FortiOS version 6.0.10 and... Moderate Unreviewed

CVE-2020-12820 was published Dec 19, 2024

The AutomatorWP – Automator plugin for no-code automations, webhooks & custom integrations in... Critical Unreviewed

CVE-2024-12626 was published Dec 19, 2024

The File Manager Pro – Filester plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2024-12331 was published Dec 19, 2024

PVH guests have their ACPI tables constructed by the toolstack. The construction involves... Unknown Unreviewed

CVE-2024-45819 was published Dec 19, 2024

An OS command injection (CWE-78) vulnerability in FortiWAN version 4.5.7 and below Command Line... High Unreviewed

CVE-2021-26115 was published Dec 19, 2024

An execution with unnecessary privileges vulnerability in the VCM engine of FortiClient for Linux... High Unreviewed

CVE-2020-15934 was published Dec 19, 2024

Netskope was made aware of a security vulnerability in Netskope Endpoint DLP’s Content Control... Moderate Unreviewed

CVE-2024-11616 was published Dec 19, 2024

The Button Block – Get fully customizable & multi-functional buttons plugin for WordPress is... Moderate Unreviewed

CVE-2024-12560 was published Dec 19, 2024

An access of uninitialized pointer (CWE-824) vulnerability in FortiWLC versions 8.6.0, 8.5.3 and... High Unreviewed

CVE-2021-26093 was published Dec 19, 2024

Incorrect Default Permissions vulnerability in Edgecross Basic Software for Windows versions 1.00... High Unreviewed

CVE-2024-4229 was published Dec 19, 2024

External Control of File Name or Path vulnerability in Edgecross Basic Software for Windows... High Unreviewed

CVE-2024-4230 was published Dec 19, 2024

Disclosure of sensitive information in HikVision camera driver's log file in XProtect Device Pack... Moderate Unreviewed

CVE-2024-12569 was published Dec 19, 2024

A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in... Moderate Unreviewed

CVE-2020-12819 was published Dec 19, 2024

The Download Manager plugin for WordPress is vulnerable to unauthorized download of password... Moderate Unreviewed

CVE-2024-11768 was published Dec 19, 2024

The The Download Manager plugin for WordPress is vulnerable to arbitrary shortcode execution in... High Unreviewed

CVE-2024-11740 was published Dec 19, 2024

A unrestricted upload of file with dangerous type vulnerability in epaper draft function in... Critical Unreviewed

CVE-2024-11984 was published Dec 19, 2024

CA Client Automation (ITCM) allows non-admin/non-root users to encrypt a string using CAF CLI and... High Unreviewed

CVE-2024-38499 was published Dec 17, 2024

The Broken Link Checker | Finder plugin for WordPress is vulnerable to Blind Server-Side Request... Moderate Unreviewed

CVE-2024-12121 was published Dec 19, 2024

Dell PowerStore contains an Improper Neutralization of Argument Delimiters in a Command (... High Unreviewed

CVE-2024-51532 was published Dec 19, 2024

An uncontrolled resource consumption vulnerability has been reported to affect several QNAP... Moderate Unreviewed

CVE-2022-27600 was published Dec 19, 2024

IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate... High Unreviewed

CVE-2024-35141 was published Dec 19, 2024

A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed

CVE-2023-23357 was published Dec 19, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

238,255 advisories