GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,932

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,355 advisories

Filter by severity

Sort by

Least recently updated

The Frontend Dashboard plugin for WordPress is vulnerable to unauthorized code execution due to... High Unreviewed

CVE-2024-8268 was published Sep 10, 2024

AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsite_url... High Unreviewed

CVE-2024-44724 was published Sep 9, 2024

D-Link DI-8300 v16.07.26A1 is vulnerable to command injection via the msp_info_htm function. Critical Unreviewed

CVE-2024-44411 was published Sep 9, 2024

D-Link DI-8300 v16.07.26A1 is vulnerable to command injection via the upgrade_filter_asp function. Critical Unreviewed

CVE-2024-44410 was published Sep 9, 2024

A code injection vulnerability can allow a low-privileged user to overwrite files on that VSPC... High Unreviewed

CVE-2024-38651 was published Sep 7, 2024

A code injection vulnerability that allows a low-privileged user with REST API access granted to... High Unreviewed

CVE-2024-39715 was published Sep 7, 2024

A code injection vulnerability that permits a low-privileged user to upload arbitrary files to... Critical Unreviewed

CVE-2024-39714 was published Sep 7, 2024

Maliciously crafted export names in an imported WebAssembly module can inject JavaScript code.... Moderate Unreviewed

CVE-2023-39333 was published Sep 7, 2024

A vulnerability was found in lmxcms up to 1.4 and classified as critical. Affected by this issue... Moderate Unreviewed

CVE-2024-8523 was published Sep 7, 2024

The Bit File Manager plugin for WordPress is vulnerable to Remote Code Execution in versions 6.0... High Unreviewed

CVE-2024-7627 was published Sep 5, 2024

An issue in the js_localize.php function of LimeSurvey v6.6.2 and before allows attackers to... High Unreviewed

CVE-2024-42902 was published Sep 3, 2024

Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit... High Unreviewed

CVE-2024-7345 was published Sep 3, 2024

UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 are vulnerable to code injection via... High Unreviewed

CVE-2024-8374 was published Sep 3, 2024

D-Link DAP-2310 Hardware A Firmware 1.16RC028 allows remote attackers to execute arbitrary code... Critical Unreviewed

CVE-2024-45623 was published Sep 2, 2024

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via... Critical Unreviewed

CVE-2024-41369 was published Aug 29, 2024

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via... Critical Unreviewed

CVE-2024-41368 was published Aug 29, 2024

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via... Critical Unreviewed

CVE-2024-41361 was published Aug 29, 2024

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via... Critical Unreviewed

CVE-2024-41367 was published Aug 29, 2024

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via... Critical Unreviewed

CVE-2024-41366 was published Aug 29, 2024

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via... Critical Unreviewed

CVE-2024-41364 was published Aug 29, 2024

Improper Control of Generation of Code ('Code Injection') vulnerability in NitroPack Inc.... Moderate Unreviewed

CVE-2024-43922 was published Aug 29, 2024

A code execution vulnerability exists in the XiaomiGetApps application product. This... High Unreviewed

CVE-2023-26322 was published Aug 28, 2024

A code execution vulnerability exists in the XiaomiGetApps application product. This... High Unreviewed

CVE-2023-26324 was published Aug 28, 2024

A code execution vulnerability exists in the XiaomiGetApps application product. This... High Unreviewed

CVE-2024-45346 was published Aug 28, 2024

HP Security Manager is potentially vulnerable to Remote Code Execution as a result of code... Critical Unreviewed

CVE-2024-7720 was published Aug 27, 2024

Previous 1 2 3 4 5 6 7 8 … 134 135 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,355 advisories