GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
30
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,299
Pub
11
RubyGems
878
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
20,249 advisories
Filter by severity
Buffer Overflow in coap_msg.c in FreeCoAP allows remote attackers to execute arbitrary code or...
Critical
Unreviewed
CVE-2024-40494
was published
Oct 23, 2024
An issue in Casa Systems NTC-221 version 2.0.99.0 and before allows a remote attacker to execute...
Critical
Unreviewed
CVE-2024-26519
was published
Oct 23, 2024
SQL Injection vulnerability in Online Complaint Site v.1.0 allows a remote attacker to escalate...
Critical
Unreviewed
CVE-2024-44812
was published
Oct 23, 2024
Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the...
Critical
Unreviewed
CVE-2024-25210
was published
Feb 14, 2024
Online Medicine Ordering System v1.0 was discovered to contain a SQL injection vulnerability via...
Critical
Unreviewed
CVE-2024-25217
was published
Feb 14, 2024
Authentication Bypass Using an Alternate Path or Channel vulnerability in Vivek Tamrakar WP REST...
Critical
Unreviewed
CVE-2024-49328
was published
Oct 20, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Admin Verbalize WP Upload a Web...
Critical
Unreviewed
CVE-2024-49668
was published
Oct 23, 2024
A vulnerability in Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000, 2100,...
Critical
Unreviewed
CVE-2024-20412
was published
Oct 23, 2024
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ...
Critical
Unreviewed
CVE-2024-20424
was published
Oct 23, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in ReneeCussack 3D Work In Progress...
Critical
Unreviewed
CVE-2024-49652
was published
Oct 23, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Ecomerciar Woocommerce Custom...
Critical
Unreviewed
CVE-2024-49658
was published
Oct 23, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Dogu Pekgoz AI Image Generator...
Critical
Unreviewed
CVE-2024-49671
was published
Oct 23, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Alexander De Ridder INK Official...
Critical
Unreviewed
CVE-2024-49669
was published
Oct 23, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in James Eggers Portfolleo...
Critical
Unreviewed
CVE-2024-49653
was published
Oct 23, 2024
A vulnerability in the SSH subsystem of Cisco Adaptive Security Appliance (ASA) Software could...
Critical
Unreviewed
CVE-2024-20329
was published
Oct 23, 2024
Authentication Bypass Using an Alternate Path or Channel vulnerability in Najeeb Ahmad Simple...
Critical
Unreviewed
CVE-2024-49604
was published
Oct 20, 2024
Simple Admin Panel App v1.0 was discovered to contain a SQL injection vulnerability via the...
Critical
Unreviewed
CVE-2024-25223
was published
Feb 14, 2024
TeleAdapt RoomCast TA-2400 1.0 through 3.1 is vulnerable to Improper Privilege Management: from...
Critical
Unreviewed
CVE-2023-33745
was published
Jul 27, 2023
Barangay Population Monitoring System 1.0 was discovered to contain a SQL injection vulnerability...
Critical
Unreviewed
CVE-2024-25209
was published
Feb 14, 2024
Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the...
Critical
Unreviewed
CVE-2024-25211
was published
Feb 14, 2024
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_reject_ipv6:...
Critical
Unreviewed
CVE-2024-47685
was published
Oct 21, 2024
A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2...
Critical
Unreviewed
CVE-2024-47901
was published
Oct 23, 2024
A missing authentication for critical function in FortiManager 7.6.0, FortiManager 7.4.0 through...
Critical
Unreviewed
CVE-2024-47575
was published
Oct 23, 2024
Kieback & Peter's DDC4000 series uses weak credentials, which may allow an unauthenticated...
Critical
Unreviewed
CVE-2024-43698
was published
Oct 23, 2024
Kieback & Peter's DDC4000 series is vulnerable to a path traversal vulnerability, which may allow...
Critical
Unreviewed
CVE-2024-41717
was published
Oct 23, 2024
ProTip!
Advisories are also available from the
GraphQL API