GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,028
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,157
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
244,475 advisories
Filter by severity
Password reset tokens are generated using an insecure source of randomness. Attackers who know...
Critical
Unreviewed
CVE-2024-6890
was published
Aug 8, 2024
Attackers with a valid username and password can exploit a python code injection vulnerability...
High
Unreviewed
CVE-2024-6891
was published
Aug 8, 2024
The "soap_cgi.pyc" API handler allows the XML body of SOAP requests to contain references to...
High
Unreviewed
CVE-2024-6893
was published
Aug 8, 2024
The Search & Filter Pro WordPress plugin before 2.5.18 does not sanitise and escape some of its...
Moderate
Unreviewed
CVE-2024-6481
was published
Aug 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm/filemap: make...
Moderate
Unreviewed
CVE-2024-42243
was published
Aug 7, 2024
A Reflected Cross Site Scripting (XSS) vulnerability was found in " /smsa/admin_login.php" in...
Moderate
Unreviewed
CVE-2024-41241
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
wireguard: allowedips: avoid...
Moderate
Unreviewed
CVE-2024-42247
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
USB: serial: mos7840: fix...
Moderate
Unreviewed
CVE-2024-42244
was published
Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/view_marks.php in Kashipara...
Moderate
Unreviewed
CVE-2024-41243
was published
Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/view_teachers.php in Kashipara...
Moderate
Unreviewed
CVE-2024-41245
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
x86/bhi: Avoid warning in ...
Moderate
Unreviewed
CVE-2024-42240
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
usb: gadget: configfs:...
Moderate
Unreviewed
CVE-2024-42236
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
net, sunrpc: Remap EPERM in...
Moderate
Unreviewed
CVE-2024-42246
was published
Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/view_students.php in Kashipara...
Moderate
Unreviewed
CVE-2024-41250
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
firmware: cs_dsp: Return...
Moderate
Unreviewed
CVE-2024-42238
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm/shmem: disable PMD-sized...
Moderate
Unreviewed
CVE-2024-42241
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
filemap: replace...
Low
Unreviewed
CVE-2024-42233
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
mmc: sdhci: Fix max_seg_size...
Moderate
Unreviewed
CVE-2024-42242
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
Revert "sched/fair: Make...
Moderate
Unreviewed
CVE-2024-42245
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
firmware: cs_dsp: Validate...
Moderate
Unreviewed
CVE-2024-42237
was published
Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/admin_teacher_register_approval.php...
Moderate
Unreviewed
CVE-2024-41251
was published
Aug 7, 2024
An issue in the Hardware info module of IT Solutions Enjay CRM OS v1.0 allows attackers to escape...
High
Unreviewed
CVE-2024-41309
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm: fix crashes from...
Moderate
Unreviewed
CVE-2024-42234
was published
Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved:
tcp_metrics: validate source...
Critical
Unreviewed
CVE-2024-42154
was published
Jul 30, 2024
SourceCodester Computer Laboratory Management System 1.0 allows admin/category/view_category.php...
Critical
Unreviewed
CVE-2024-34480
was published
Aug 7, 2024
ProTip!
Advisories are also available from the
GraphQL API