GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,733
Composer 4,238
Erlang 31
GitHub Actions 21
Go 2,005
Maven 5,193
npm 3,716
NuGet 661
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,746

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

235,746 advisories

Filter by severity

Sort by

Least recently updated

In elisp-mode.el in GNU Emacs through 30.0.92, a user who chooses to invoke elisp-completion-at... Unknown Unreviewed

CVE-2024-53920 was published Nov 27, 2024

A Reflected Cross Site Scripting (XSS) vulnerability was found in /covid-tms/patient-search... Unknown Unreviewed

CVE-2024-53635 was published Nov 27, 2024

A SQL Injection vulnerability was found in /covid-tms/check_availability.php in PHPGurukul COVID... Unknown Unreviewed

CVE-2024-53604 was published Nov 27, 2024

A SQL Injection vulnerability was found in /covid-tms/password-recovery.php in PHPGurukul COVID... Unknown Unreviewed

CVE-2024-53603 was published Nov 27, 2024

Stored Cross-Site Scripting in the Access Request History in Omada Identity before version 15... Unknown Unreviewed

CVE-2024-52951 was published Nov 27, 2024

OpenVidReview 1.0 is vulnerable to Incorrect Access Control. The /upload route is accessible... Unknown Unreviewed

CVE-2024-46054 was published Nov 27, 2024

OpenVidReview 1.0 is vulnerable to Cross Site Scripting (XSS) in review names. Unknown Unreviewed

CVE-2024-46055 was published Nov 27, 2024

When exporting media types, the password is exported in the YAML in plain text. This appears to... Low Unreviewed

CVE-2024-36464 was published Nov 27, 2024

The researcher is showing that it is possible to leak a small amount of Zabbix Server memory... Low Unreviewed

CVE-2024-42333 was published Nov 27, 2024

The researcher is showing that due to the way the SNMP trap log is parsed, an attacker can craft... Low Unreviewed

CVE-2024-42332 was published Nov 27, 2024

In the src/libs/zbxembed/browser.c file, the es_browser_ctor method retrieves a heap pointer from... Low Unreviewed

CVE-2024-42331 was published Nov 27, 2024

An authenticated attacker with low privileges may use a SQL Injection vulnerability in the... Moderate Unreviewed

CVE-2024-11025 was published Nov 27, 2024

The reported vulnerability is a stack buffer overflow in the zbx_snmp_cache_handle_engineid... Low Unreviewed

CVE-2024-36468 was published Nov 27, 2024

A non-admin user account on the Zabbix frontend with the default User role, or with any other... Critical Unreviewed

CVE-2024-42327 was published Nov 27, 2024

The webdriver for the Browser object expects an error object to be initialized when the... Low Unreviewed

CVE-2024-42329 was published Nov 27, 2024

The HttpRequest object allows to get the HTTP headers from the server's response after sending... Critical Unreviewed

CVE-2024-42330 was published Nov 27, 2024

There was discovered a use after free bug in browser.c in the es_browser_get_variant function Moderate Unreviewed

CVE-2024-42326 was published Nov 27, 2024

The Internal Linking for SEO traffic & Ranking – Auto internal links (100% automatic) plugin for... Moderate Unreviewed

CVE-2024-11009 was published Nov 27, 2024

When the webdriver for the Browser object downloads data from a HTTP server, the data pointer is... Low Unreviewed

CVE-2024-42328 was published Nov 27, 2024

A directory traversal vulnerability in the web management interface of Zyxel ATP series firmware... High Unreviewed

CVE-2024-11667 was published Nov 27, 2024

The WordPress Contact Forms by Cimatti plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2024-10521 was published Nov 27, 2024

Zohocorp ManageEngine Analytics Plus versions below 6100 are vulnerable to authenticated... High Unreviewed

CVE-2024-52323 was published Nov 27, 2024

The Pricing Tables For WPBakery Page Builder (formerly Visual Composer) plugin for WordPress is... Moderate Unreviewed

CVE-2024-10175 was published Nov 27, 2024

The Counter Up – Animated Number Counter & Milestone Showcase plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-10895 was published Nov 27, 2024

An authenticated user with API access (e.g.: user with default User role), more specifically a... High Unreviewed

CVE-2024-36467 was published Nov 27, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

235,746 advisories