GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,351 advisories
Filter by severity
Deserialization of Untrusted Data vulnerability in Liquid Web GiveWP allows Object Injection.This...
Critical
Unreviewed
CVE-2024-37099
was published
Aug 19, 2024
SolarWinds Web Help Desk was found to be susceptible to a Java Deserialization Remote Code...
Critical
Unreviewed
CVE-2024-28986
was published
Aug 14, 2024
Deserialization of Untrusted Data vulnerability in Roland Barker, xnau webdesign Participants...
Critical
Unreviewed
CVE-2024-43141
was published
Aug 13, 2024
The News Flash theme for WordPress is vulnerable to PHP Object Injection in all versions up to,...
High
Unreviewed
CVE-2024-7560
was published
Aug 8, 2024
The MultiPurpose theme for WordPress is vulnerable to PHP Object Injection in all versions up to,...
High
Unreviewed
CVE-2024-7486
was published
Aug 8, 2024
The The Next theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and...
High
Unreviewed
CVE-2024-7561
was published
Aug 8, 2024
An insecure deserialization vulnerability in web component of EPMM prior to 12.1.0.1 allows an...
High
Unreviewed
CVE-2024-36131
was published
Aug 7, 2024
XXL-RPC Deserialization of Untrusted Data vulnerability
Critical
CVE-2023-45146
was published
for
com.xuxueli:xxl-rpc-core
(Maven)
Aug 5, 2024
Redisson vulnerable to Deserialization of Untrusted Data
Critical
CVE-2023-42809
was published
for
org.redisson:redisson
(Maven)
Aug 5, 2024
Deserialization of Untrusted Data vulnerability in CodeSolz Better Find and Replace.This issue...
High
Unreviewed
CVE-2024-39636
was published
Aug 2, 2024
Deserialization of Untrusted Data vulnerability in MotoPress Timetable and Event Schedule allows...
Moderate
Unreviewed
CVE-2024-39630
was published
Aug 1, 2024
The Flipbox Builder plugin for WordPress is vulnerable to PHP Object Injection in all versions up...
High
Unreviewed
CVE-2024-6152
was published
Jul 27, 2024
A vulnerability was found in kirilkirkov Ecommerce-Laravel-Bootstrap up to...
Moderate
Unreviewed
CVE-2024-7067
was published
Jul 24, 2024
In Progress® Telerik® Report Server versions prior to 2024 Q2 (10.1.24.709), a remote code...
Critical
Unreviewed
CVE-2024-6327
was published
Jul 24, 2024
A deserialization of untrusted data vulnerability exists in NI VeriStand Waveform Streaming ...
Critical
Unreviewed
CVE-2024-6794
was published
Jul 22, 2024
A deserialization of untrusted data vulnerability exists in NI VeriStand DataLogging Server that...
Critical
Unreviewed
CVE-2024-6793
was published
Jul 22, 2024
A deserialization of untrusted data vulnerability exists in NI VeriStand that may result in...
High
Unreviewed
CVE-2024-6675
was published
Jul 22, 2024
Deserialization of Untrusted Data vulnerability in WP MEDIA SAS Search & Replace.This issue...
Moderate
Unreviewed
CVE-2024-38759
was published
Jul 22, 2024
H2O vulnerable to Deserialization of Untrusted Data
High
CVE-2024-6960
was published
for
ai.h2o:h2o-core
(Maven)
Jul 21, 2024
A vulnerability was found in ZhongBangKeJi CRMEB up to 5.4.0 and classified as critical. Affected...
Moderate
Unreviewed
CVE-2024-6944
was published
Jul 21, 2024
A vulnerability has been found in ZhongBangKeJi CRMEB up to 5.4.0 and classified as critical....
Moderate
Unreviewed
CVE-2024-6943
was published
Jul 21, 2024
It was discovered that a previous vulnerability was not completely fixed with SolarWinds Access...
Critical
Unreviewed
CVE-2024-28074
was published
Jul 17, 2024
TorrentPier Deserialization of Untrusted Data vulnerability
Critical
CVE-2024-40624
was published
for
torrentpier/torrentpier
(Composer)
Jul 15, 2024
Apache Linkis DataSource's JDBC Datasource Module with DB2 has JNDI Injection vulnerability
High
CVE-2023-49566
was published
for
org.apache.linkis:linkis-datasource
(Maven)
Jul 15, 2024
Apache Linkis DataSource remote code execution vulnerability
High
CVE-2023-46801
was published
for
org.apache.linkis:linkis-datasource
(Maven)
Jul 15, 2024
ProTip!
Advisories are also available from the
GraphQL API