Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,028
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,157
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+

244,475 advisories

Loading
Password reset tokens are generated using an insecure source of randomness. Attackers who know... Critical Unreviewed
CVE-2024-6890 was published Aug 8, 2024
Attackers with a valid username and password can exploit a python code injection vulnerability... High Unreviewed
CVE-2024-6891 was published Aug 8, 2024
The "soap_cgi.pyc" API handler allows the XML body of SOAP requests to contain references to... High Unreviewed
CVE-2024-6893 was published Aug 8, 2024
The Search & Filter Pro WordPress plugin before 2.5.18 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2024-6481 was published Aug 8, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/filemap: make... Moderate Unreviewed
CVE-2024-42243 was published Aug 7, 2024
A Reflected Cross Site Scripting (XSS) vulnerability was found in " /smsa/admin_login.php" in... Moderate Unreviewed
CVE-2024-41241 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: wireguard: allowedips: avoid... Moderate Unreviewed
CVE-2024-42247 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: USB: serial: mos7840: fix... Moderate Unreviewed
CVE-2024-42244 was published Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/view_marks.php in Kashipara... Moderate Unreviewed
CVE-2024-41243 was published Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/view_teachers.php in Kashipara... Moderate Unreviewed
CVE-2024-41245 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: x86/bhi: Avoid warning in ... Moderate Unreviewed
CVE-2024-42240 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs:... Moderate Unreviewed
CVE-2024-42236 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in... Moderate Unreviewed
CVE-2024-42246 was published Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/view_students.php in Kashipara... Moderate Unreviewed
CVE-2024-41250 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Return... Moderate Unreviewed
CVE-2024-42238 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/shmem: disable PMD-sized... Moderate Unreviewed
CVE-2024-42241 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: filemap: replace... Low Unreviewed
CVE-2024-42233 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci: Fix max_seg_size... Moderate Unreviewed
CVE-2024-42242 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: Revert "sched/fair: Make... Moderate Unreviewed
CVE-2024-42245 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Validate... Moderate Unreviewed
CVE-2024-42237 was published Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/admin_teacher_register_approval.php... Moderate Unreviewed
CVE-2024-41251 was published Aug 7, 2024
An issue in the Hardware info module of IT Solutions Enjay CRM OS v1.0 allows attackers to escape... High Unreviewed
CVE-2024-41309 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: mm: fix crashes from... Moderate Unreviewed
CVE-2024-42234 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: tcp_metrics: validate source... Critical Unreviewed
CVE-2024-42154 was published Jul 30, 2024
SourceCodester Computer Laboratory Management System 1.0 allows admin/category/view_category.php... Critical Unreviewed
CVE-2024-34480 was published Aug 7, 2024
ProTip! Advisories are also available from the GraphQL API