GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,645
Composer 4,233
Erlang 31
GitHub Actions 20
Go 1,992
Maven 5,179
npm 3,709
NuGet 661
pip 3,346
Pub 11
RubyGems 884
Rust 846
Swift 36

Unreviewed advisories

All unreviewed 234,992

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

234,992 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in Vivwebs Dynamic Widgets.This issue affects... Moderate Unreviewed

CVE-2024-51669 was published Nov 20, 2024

In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to a... Unknown Unreviewed

CVE-2018-9424 was published Nov 20, 2024

Cross-Site Request Forgery (CSRF) vulnerability in W3speedster W3SPEEDSTER.This issue affects... Moderate Unreviewed

CVE-2024-52392 was published Nov 20, 2024

In startDevice of AAudioServiceStreamBase.cpp there is a possible out of bounds write due to a... Unknown Unreviewed

CVE-2018-9428 was published Nov 20, 2024

In f_hidg_read and hidg_disable of f_hid.c, there is a possible use-after-free due to improper... Unknown Unreviewed

CVE-2018-9417 was published Nov 20, 2024

The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-11400 was published Nov 20, 2024

In l2cble_process_sig_cmd of l2c_ble.cc, there is a possible out of bounds read due to a missing... Unknown Unreviewed

CVE-2018-9419 was published Nov 20, 2024

In parse of M3UParser.cpp there is a possible resource exhaustion due to improper input... Unknown Unreviewed

CVE-2018-9440 was published Nov 20, 2024

In writeInplace of Parcel.cpp, there is a possible information leak across processes, using... Unknown Unreviewed

CVE-2018-9421 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-30424 was published Nov 20, 2024

In createPhonebookDialogView and createMapDialogView of BluetoothPermissionActivity.java, there... Unknown Unreviewed

CVE-2018-9432 was published Nov 20, 2024

In removeUnsynchronization of ID3.cpp there is a possible resource exhaustion due to improper... Unknown Unreviewed

CVE-2018-9412 was published Nov 20, 2024

In the getHost() function of UriTest.java, there is the possibility of incorrect web origin... Unknown Unreviewed

CVE-2018-9467 was published Nov 20, 2024

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS... Unknown Unreviewed

CVE-2024-44307 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2023-27609 was published Nov 20, 2024

In ArrayConcatVisitor of builtins-array.cc, there is a possible type confusion due to improper... Unknown Unreviewed

CVE-2018-9433 was published Nov 20, 2024

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS... Unknown Unreviewed

CVE-2024-44306 was published Nov 20, 2024

In sdpu_extract_attr_seq of sdp_utils.cc, there is a possible out of bounds read due to an... Unknown Unreviewed

CVE-2018-9456 was published Nov 20, 2024

A cross-site scripting (XSS) vulnerability in the component /graph_all_periods.php of Ganglia-web... Unknown Unreviewed

CVE-2024-52763 was published Nov 19, 2024

Rejected reason: This CVE was previously published at https://bugzilla.redhat.com/show_bug.cgi?id... Unknown Unreviewed

CVE-2024-1271 was published Nov 19, 2024

A cross-site scripting (XSS) vulnerability in the component /master/header.php of Ganglia-web v3... Unknown Unreviewed

CVE-2024-52762 was published Nov 19, 2024

In bootloader there is fastboot command allowing user specified kernel command line arguments.... Unknown Unreviewed

CVE-2018-9369 was published Nov 19, 2024

In cmd_flash_mmc_sparse_img of dl_commands.c, there is a possible out of bounds write due to a... Unknown Unreviewed

CVE-2018-9372 was published Nov 19, 2024

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 could allow an authenticated user to... Moderate Unreviewed

CVE-2024-52359 was published Nov 19, 2024

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 could allow an authenticated user to obtain... Moderate Unreviewed

CVE-2024-37070 was published Nov 19, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

234,992 advisories