Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,351 advisories

Loading
A vulnerability was found in zmops ArgusDBM up to 0.1.0. It has been classified as critical.... Moderate Unreviewed
CVE-2024-6644 was published Jul 10, 2024
A vulnerability was found in WuKongOpenSource Wukong_nocode up to 20230807. It has been declared... Moderate Unreviewed
CVE-2024-6645 was published Jul 10, 2024
Microsoft SharePoint Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38094 was published Jul 9, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38024 was published Jul 9, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38023 was published Jul 9, 2024
A vulnerability has been identified in SIMATIC STEP 7 Safety V18 (All versions < V18 Update 2).... High Unreviewed
CVE-2023-32737 was published Jul 9, 2024
A vulnerability has been identified in SIMATIC STEP 7 Safety V16 (All versions < V16 Update 7),... High Unreviewed
CVE-2023-32735 was published Jul 9, 2024
A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP 7 V16 ... High Unreviewed
CVE-2022-45147 was published Jul 9, 2024
Deserialization of Untrusted Data vulnerability in wpweb WooCommerce Social Login.This issue... Moderate Unreviewed
CVE-2024-37502 was published Jul 9, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 up to 20230922. It... Moderate Unreviewed
CVE-2024-6525 was published Jul 5, 2024
A vulnerability was found in ORIPA up to 1.72. It has been declared as critical. Affected by this... Moderate Unreviewed
CVE-2024-6441 was published Jul 2, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user... High Unreviewed
CVE-2024-36984 was published Jul 1, 2024
ntlk unsafe deserialization vulnerability High
CVE-2024-39705 was published for nltk (pip) Jun 28, 2024
justinrosenthal ekaf
In WhatsUp Gold versions released before 2023.1.3, Distributed Edition installations can be... High Unreviewed
CVE-2024-5016 was published Jun 25, 2024
Deserialization of Untrusted Data vulnerability in Live Composer Team Page Builder: Live Composer... High Unreviewed
CVE-2024-35780 was published Jun 19, 2024
The Photo Video Gallery Master plugin for WordPress is vulnerable to PHP Object Injection in all... High Unreviewed
CVE-2024-5724 was published Jun 19, 2024
The Universal Slider plugin for WordPress is vulnerable to PHP Object Injection in all versions... Moderate Unreviewed
CVE-2024-5649 was published Jun 19, 2024
Insecure Deserialization in some workflows of the IPS Manager allows unauthenticated remote... Critical Unreviewed
CVE-2024-5671 was published Jun 14, 2024
The CoDesigner WooCommerce Builder for Elementor – Customize Checkout, Shop, Email, Products &... Critical Unreviewed
CVE-2024-4371 was published Jun 13, 2024
There is a vulnerability in AVEVA PI Web API that could allow malicious code to execute on the PI... Unknown Unreviewed
CVE-2024-3468 was published Jun 12, 2024
There is a vulnerability in AVEVA PI Asset Framework Client that could allow malicious code to... High Unreviewed
CVE-2024-3467 was published Jun 12, 2024
Dell Common Event Enabler, version 8.9.10.0 and prior, contain an insecure deserialization... High Unreviewed
CVE-2024-28964 was published Jun 12, 2024
Microsoft Dynamics 365 Business Central Remote Code Execution Vulnerability High Unreviewed
CVE-2024-35249 was published Jun 11, 2024
nukeviet Deserialization of Untrusted Data vulnerability High
CVE-2024-36528 was published for nukeviet/nukeviet (Composer) Jun 10, 2024
Untrusted data deserialization vulnerability has been found in Mentor - Employee Portal,... Critical Unreviewed
CVE-2024-5675 was published Jun 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database