GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,155
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
110,988 advisories
Filter by severity
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20443
was published
Aug 7, 2024
Okta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The...
Moderate
Unreviewed
CVE-2024-7061
was published
Aug 7, 2024
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20479
was published
Aug 7, 2024
Pulp incorrectly assigns RBAC permissions in tasks that create objects
Moderate
CVE-2024-7143
was published
for
pulpcore
(pip)
Aug 7, 2024
A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been rated as...
Moderate
Unreviewed
CVE-2024-7580
was published
Aug 7, 2024
A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been classified...
Moderate
Unreviewed
CVE-2024-7578
was published
Aug 7, 2024
A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been declared as...
Moderate
Unreviewed
CVE-2024-7579
was published
Aug 7, 2024
Jenkins does not perform a permission check in an HTTP endpoint
Moderate
CVE-2024-43045
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
Aug 7, 2024
Django vulnerable to denial-of-service attack
Moderate
CVE-2024-41991
was published
for
Django
(pip)
Aug 7, 2024
Django vulnerable to a denial-of-service attack
Moderate
CVE-2024-41990
was published
for
Django
(pip)
Aug 7, 2024
Django memory consumption vulnerability
Moderate
CVE-2024-41989
was published
for
Django
(pip)
Aug 7, 2024
The Organization chart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ...
Moderate
Unreviewed
CVE-2024-7355
was published
Aug 7, 2024
The Accept Stripe Payments plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-7353
was published
Aug 7, 2024
Ivanti Docs@Work for Android, before 2.26.0 is affected by the 'Dirty Stream' vulnerability. The...
Moderate
Unreviewed
CVE-2024-37403
was published
Aug 7, 2024
The WordPress File Upload WordPress plugin before 4.24.8 does not properly sanitize and escape...
Moderate
Unreviewed
CVE-2024-6494
was published
Aug 7, 2024
An improper authentication vulnerability in web component of EPMM prior to 12.1.0.1 allows a...
Moderate
Unreviewed
CVE-2024-34788
was published
Aug 7, 2024
Out-of-bounds read in parsing connected object list in Samsung Notes prior to version 4.4.21.62...
Moderate
Unreviewed
CVE-2024-34634
was published
Aug 7, 2024
Improper handling of insufficient permission in KnoxDualDARPolicy prior to SMR Aug-2024 Release 1...
Moderate
Unreviewed
CVE-2024-34616
was published
Aug 7, 2024
Out-of-bounds read in applying connection point in Samsung Notes prior to version 4.4.21.62...
Moderate
Unreviewed
CVE-2024-34625
was published
Aug 7, 2024
Improper handling of insufficient permission in Telephony prior to SMR Aug-2024 Release 1 allows...
Moderate
Unreviewed
CVE-2024-34617
was published
Aug 7, 2024
Improper access control in System property prior to SMR Aug-2024 Release 1 allows local attackers...
Moderate
Unreviewed
CVE-2024-34618
was published
Aug 7, 2024
Out-of-bounds read in applying binary with text common object in Samsung Notes prior to version 4...
Moderate
Unreviewed
CVE-2024-34629
was published
Aug 7, 2024
Out-of-bounds read in uuid parsing in Samsung Notes prior to version 4.4.21.62 allows local...
Moderate
Unreviewed
CVE-2024-34632
was published
Aug 7, 2024
Out-of-bounds read in applying binary with data in Samsung Notes prior to version 4.4.21.62...
Moderate
Unreviewed
CVE-2024-34621
was published
Aug 7, 2024
Out-of-bounds read in parsing textbox object in Samsung Notes prior to version 4.4.21.62 allows...
Moderate
Unreviewed
CVE-2024-34635
was published
Aug 7, 2024
ProTip!
Advisories are also available from the
GraphQL API