Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,225 advisories

Loading
Import functionality is vulnerable to DNS rebinding attacks between verification and processing... High Unreviewed
CVE-2024-36471 was published Jun 11, 2024
An issue was discovered in Samsung Mobile Processor Exynos 2200, Exynos 1480, Exynos 2400. It... High Unreviewed
CVE-2024-31959 was published Jun 7, 2024
In mintplex-labs/anything-llm, a vulnerability exists in the thread update process that allows... High Unreviewed
CVE-2024-3150 was published Jun 6, 2024
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of... High Unreviewed
CVE-2024-36734 was published Jun 6, 2024
An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when... High Unreviewed
CVE-2024-36740 was published Jun 6, 2024
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of... High Unreviewed
CVE-2024-36737 was published Jun 6, 2024
mintplex-labs/anything-llm is vulnerable to multiple security issues due to improper input... High Unreviewed
CVE-2024-3152 was published Jun 6, 2024
An issue in the oneflow.scatter_nd parameter OneFlow-Inc. Oneflow v0.9.1 allows attackers to... High Unreviewed
CVE-2024-36742 was published Jun 6, 2024
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6... High Unreviewed
CVE-2024-23668 was published Jun 3, 2024
MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service High Unreviewed
CVE-2024-36390 was published Jun 2, 2024
In mintplex-labs/anything-llm, a vulnerability exists due to improper input validation in the... High Unreviewed
CVE-2024-4287 was published May 20, 2024
A potential vulnerability has been identified for OpenText Operations Bridge Reporter. The... High Unreviewed
CVE-2021-22508 was published May 17, 2024
Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious... High Unreviewed
CVE-2024-22429 was published May 17, 2024
Improper input validation in PprRequestLog module in UEFI firmware for some Intel(R) Server... High Unreviewed
CVE-2024-22382 was published May 16, 2024
Improper input validation in UserAuthenticationSmm driver in UEFI firmware for some Intel(R)... High Unreviewed
CVE-2024-23487 was published May 16, 2024
Improper input validation in PfrSmiUpdateFw driver in UEFI firmware for some Intel(R) Server... High Unreviewed
CVE-2024-24981 was published May 16, 2024
Improper input validation in PlatformVariableInitDxe driver in UEFI firmware for some Intel(R)... High Unreviewed
CVE-2024-22095 was published May 16, 2024
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may... High Unreviewed
CVE-2023-45745 was published May 16, 2024
Improper input validation for some some Intel(R) PROSet/Wireless WiFi software for Windows before... High Unreviewed
CVE-2023-38654 was published May 16, 2024
Improper input validation in some Intel(R) BIOS Guard firmware may allow a privileged user to... High Unreviewed
CVE-2023-28402 was published May 16, 2024
A Local File Inclusion (LFI) vulnerability exists in the gaizhenbiao/chuanhuchatgpt application,... High Unreviewed
CVE-2024-4321 was published May 16, 2024
Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can... High Unreviewed
CVE-2024-3968 was published May 15, 2024
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Input... High Unreviewed
CVE-2024-34098 was published May 15, 2024
Improper DLL loading algorithms in B&R Automation Studio may allow an authenticated local... High Unreviewed
CVE-2021-22280 was published May 14, 2024
The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains an Improper Input... High Unreviewed
CVE-2024-3676 was published May 14, 2024
ProTip! Advisories are also available from the GraphQL API