Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,297 advisories

Loading
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.3,... High Unreviewed
CVE-2024-23208 was published Jan 23, 2024
NYUCCL psiTurk IS vulnerable to Improper Neutralization of Special Elements High
CVE-2021-4315 was published for psiTurk (pip) Jan 29, 2023
Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of... High Unreviewed
CVE-2024-0755 was published Jan 23, 2024
The Time Clock plugin and Time Clock Pro plugin for WordPress are vulnerable to Remote Code... High Unreviewed
CVE-2024-9593 was published Oct 18, 2024
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2012-1879 was published May 13, 2022
The DefaultOSWorkflowConfigurator class in Jira Server and Jira Data Center before version 8.18.1... High Unreviewed
CVE-2017-18113 was published May 24, 2022
Improper Verification of Cryptographic Signature vulnerability in Zscaler Client Connector on... High Unreviewed
CVE-2023-28796 was published Oct 23, 2023
Buffer overflow vulnerability in the signelf library used by Zscaler Client Connector on Linux... High Unreviewed
CVE-2023-28793 was published Oct 23, 2023
In the Automattic WooCommerce plugin before 3.2.4 for WordPress, an attack is possible after... High Unreviewed
CVE-2017-18356 was published May 14, 2022
Dell OpenManage Enterprise, version(s) OME 4.1 and prior, contain(s) an Improper Control of... High Unreviewed
CVE-2024-45766 was published Oct 17, 2024
Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution ... High Unreviewed
CVE-2024-22899 was published Feb 2, 2024
The The WP Popup Builder – Popup Forms and Marketing Lead Generation plugin for WordPress is... High Unreviewed
CVE-2024-9061 was published Oct 16, 2024
Code execution vulnerability in HtmlUnit High
CVE-2020-5529 was published for net.sourceforge.htmlunit:htmlunit (Maven) May 21, 2020
SMB in the Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2,... High Unreviewed
CVE-2008-4835 was published May 14, 2022
A HTML Injection vulnerability was found in /search-result.php of PHPGurukul User Registration &... High Unreviewed
CVE-2024-48279 was published Oct 15, 2024
Code Injection in PyXDG High
CVE-2019-12761 was published for pyxdg (pip) Jun 7, 2019
The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-9837 was published Oct 15, 2024
Plone Code Injection vulnerability High
CVE-2012-5485 was published for Plone (pip) May 17, 2022
A vulnerability was discovered in FBM_292W-21.03.10V, which has been classified as critical. This... High Unreviewed
CVE-2024-44414 was published Oct 11, 2024
An issue was discovered in ISPConfig before 3.2.11p1. PHP code injection can be achieved in the... High Unreviewed
CVE-2023-46818 was published Oct 27, 2023
Affected versions of Atlassian Jira Server or Data Center using the Jira Service Management addon... High Unreviewed
CVE-2021-39128 was published May 24, 2022
Affected versions of Atlassian Jira Service Management Server and Data Center allow remote... High Unreviewed
CVE-2021-39115 was published May 24, 2022
ESRI ArcMap 9 and ArcGIS 10.0.2.3200 and earlier does not properly prompt users before executing... High Unreviewed
CVE-2012-1661 was published May 17, 2022
The Shortcodes AnyWhere plugin for WordPress is vulnerable to arbitrary shortcode execution in... High Unreviewed
CVE-2024-9581 was published Oct 10, 2024
Plone Code Injection vulnerability High
CVE-2012-5488 was published for Plone (pip) May 17, 2022
tdunlap607
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database