Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,044
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

110,719 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-37962 was published Dec 19, 2024
Under non-default configuration, a stack-based buffer overflow in FortiOS version 6.0.10 and... Moderate Unreviewed
CVE-2020-12820 was published Dec 19, 2024
The File Manager Pro – Filester plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed
CVE-2024-12331 was published Dec 19, 2024
Netskope was made aware of a security vulnerability in Netskope Endpoint DLP’s Content Control... Moderate Unreviewed
CVE-2024-11616 was published Dec 19, 2024
The Button Block – Get fully customizable & multi-functional buttons plugin for WordPress is... Moderate Unreviewed
CVE-2024-12560 was published Dec 19, 2024
Disclosure of sensitive information in HikVision camera driver's log file in XProtect Device Pack... Moderate Unreviewed
CVE-2024-12569 was published Dec 19, 2024
A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in... Moderate Unreviewed
CVE-2020-12819 was published Dec 19, 2024
The Download Manager plugin for WordPress is vulnerable to unauthorized download of password... Moderate Unreviewed
CVE-2024-11768 was published Dec 19, 2024
The Broken Link Checker | Finder plugin for WordPress is vulnerable to Blind Server-Side Request... Moderate Unreviewed
CVE-2024-12121 was published Dec 19, 2024
An uncontrolled resource consumption vulnerability has been reported to affect several QNAP... Moderate Unreviewed
CVE-2022-27600 was published Dec 19, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed
CVE-2023-23357 was published Dec 19, 2024
IBM Robotic Process Automation 21.0.1, 21.0.2, and 21.0.3 could allow a user with psychical... Moderate Unreviewed
CVE-2022-33954 was published Dec 19, 2024
IBM Cognos Analytics Mobile for Android 1.1.14 uses weaker than expected cryptographic algorithms... Moderate Unreviewed
CVE-2021-39081 was published Dec 19, 2024
The WP Project Manager plugin for WordPress is vulnerable to Sensitive Information Exposure in... Moderate Unreviewed
CVE-2024-10548 was published Dec 19, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is... Moderate Unreviewed
CVE-2023-30443 was published Dec 19, 2024
A command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-23356 was published Dec 19, 2024
An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys... Moderate Unreviewed
CVE-2022-40733 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... Moderate Unreviewed
CVE-2022-44519 was published Dec 19, 2024
IBM InfoSphere Information Server 11.7 could allow a remote attacker to hijack the clicking... Moderate Unreviewed
CVE-2021-29827 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... Moderate Unreviewed
CVE-2022-44516 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... Moderate Unreviewed
CVE-2022-44515 was published Dec 19, 2024
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005... Moderate Unreviewed
CVE-2023-21586 was published Dec 19, 2024
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 is vulnerable to cross-site... Moderate Unreviewed
CVE-2021-20553 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... Moderate Unreviewed
CVE-2022-44517 was published Dec 19, 2024
An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys... Moderate Unreviewed
CVE-2022-40732 was published Dec 19, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database