GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,645
Composer 4,233
Erlang 31
GitHub Actions 20
Go 1,992
Maven 5,179
npm 3,709
NuGet 661
pip 3,346
Pub 11
RubyGems 884
Rust 846
Swift 36

Unreviewed advisories

All unreviewed 235,004

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

235,004 advisories

Filter by severity

Sort by

Least recently updated

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed

CVE-2024-52473 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed

CVE-2024-52472 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed

CVE-2024-52471 was published Nov 20, 2024

Pega Platform versions 6.x to Infinity 24.1.1 are affected by an issue with Improper Control of... Critical Unreviewed

CVE-2024-10094 was published Nov 20, 2024

Cross-Site Scripting (XSS) vulnerabilities in Anuj Kumar's Client Management System Version 1.2... Unknown Unreviewed

CVE-2024-51209 was published Nov 20, 2024

The Clone plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and... High Unreviewed

CVE-2024-10913 was published Nov 20, 2024

File Upload vulnerability in change-image.php in Anuj Kumar's Boat Booking System version 1.0... Unknown Unreviewed

CVE-2024-51208 was published Nov 20, 2024

Buffer overflow vulnerability in OllyDbg, version 1.10, which could allow a local attacker to... High Unreviewed

CVE-2024-11495 was published Nov 20, 2024

The PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes plugin... Moderate Unreviewed

CVE-2024-11154 was published Nov 20, 2024

Improper Privilege Management vulnerability in upKeeper Solutions upKeeper Instant Privilege... Critical Unreviewed

CVE-2024-9479 was published Nov 20, 2024

Improper Privilege Management vulnerability in upKeeper Solutions upKeeper Instant Privilege... Critical Unreviewed

CVE-2024-9478 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed

CVE-2024-52470 was published Nov 20, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Buying Buddy Buying Buddy IDX CRM allows... High Unreviewed

CVE-2024-52446 was published Nov 20, 2024

Deserialization of Untrusted Data vulnerability in Modeltheme QRMenu Restaurant QR Menu Lite... High Unreviewed

CVE-2024-52445 was published Nov 20, 2024

Deserialization of Untrusted Data vulnerability in Bueno Labs Pvt. Ltd. Xpresslane Fast Checkout... Critical Unreviewed

CVE-2024-52440 was published Nov 20, 2024

Deserialization of Untrusted Data vulnerability in Mark O’Donnell Team Rosters allows Object... Critical Unreviewed

CVE-2024-52439 was published Nov 20, 2024

Incorrect Privilege Assignment vulnerability in Userplus UserPlus allows Privilege Escalation... Critical Unreviewed

CVE-2024-52442 was published Nov 20, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52449 was published Nov 20, 2024

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')... Critical Unreviewed

CVE-2024-52441 was published Nov 20, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52444 was published Nov 20, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-52450 was published Nov 20, 2024

Deserialization of Untrusted Data vulnerability in Nerijus Masikonis Geolocator allows Object... Critical Unreviewed

CVE-2024-52443 was published Nov 20, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Aaron Robbins Post Ideas allows SQL Injection... High Unreviewed

CVE-2024-52451 was published Nov 20, 2024

Path Traversal: '.../...//' vulnerability in Corporate Zen Contact Page With Google Map allows... High Unreviewed

CVE-2024-52447 was published Nov 20, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52448 was published Nov 20, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

235,004 advisories