GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
76 advisories
Filter by severity
A vulnerability was found in WuKongOpenSource Wukong_nocode up to 20230807. It has been declared...
Moderate
Unreviewed
CVE-2024-6645
was published
Jul 10, 2024
A vulnerability was found in zmops ArgusDBM up to 0.1.0. It has been classified as critical....
Moderate
Unreviewed
CVE-2024-6644
was published
Jul 10, 2024
Deserialization of Untrusted Data vulnerability in wpweb WooCommerce Social Login.This issue...
Moderate
Unreviewed
CVE-2024-37502
was published
Jul 9, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 up to 20230922. It...
Moderate
Unreviewed
CVE-2024-6525
was published
Jul 5, 2024
A vulnerability was found in ORIPA up to 1.72. It has been declared as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-6441
was published
Jul 2, 2024
Deserialization of Untrusted Data vulnerability in WebToffee Order Export & Order Import for...
Moderate
Unreviewed
CVE-2024-34751
was published
May 16, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, has been found...
Moderate
Unreviewed
CVE-2024-4699
was published
May 14, 2024
Deserialization of Untrusted Data vulnerability in BdThemes Ultimate Store Kit Elementor Addons...
Moderate
Unreviewed
CVE-2024-4606
was published
May 14, 2024
Deserialization of Untrusted Data vulnerability in OCDI One Click Demo Import.This issue affects...
Moderate
Unreviewed
CVE-2024-34433
was published
May 14, 2024
The IBM SDK, Java Technology Edition's Object Request Broker (ORB) 7.1.0.0 through 7.1.5.21 and 8...
Moderate
Unreviewed
CVE-2023-38264
was published
May 14, 2024
Deserialization of Untrusted Data vulnerability in Team Yoast Custom field finder.This issue...
Moderate
Unreviewed
CVE-2024-33641
was published
Apr 29, 2024
A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue...
Moderate
Unreviewed
CVE-2023-32665
was published
Sep 14, 2023
Deserialization of Untrusted Data vulnerability in WebToffee Import Export WordPress Users.This...
Moderate
Unreviewed
CVE-2024-32835
was published
Apr 24, 2024
Deserialization of Untrusted Data vulnerability in Import and export users and customers.This...
Moderate
Unreviewed
CVE-2024-32817
was published
Apr 24, 2024
A vulnerability classified as critical has been found in Byzoro Smart S80 Management Platform up...
Moderate
Unreviewed
CVE-2024-4019
was published
Apr 20, 2024
Deserialization of Untrusted Data vulnerability in WP All Import Import Users from CSV.This issue...
Moderate
Unreviewed
CVE-2024-32431
was published
Apr 15, 2024
A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI up to 3.9...
Moderate
Unreviewed
CVE-2024-3740
was published
Apr 13, 2024
Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive:...
Moderate
Unreviewed
CVE-2024-27985
was published
Apr 11, 2024
A vulnerability was found in EyouCMS 1.6.5. It has been declared as critical. This vulnerability...
Moderate
Unreviewed
CVE-2024-3431
was published
Apr 8, 2024
Deserialization of Untrusted Data vulnerability in VJInfotech WP Import Export Lite.This issue...
Moderate
Unreviewed
CVE-2024-31308
was published
Apr 7, 2024
In appendEscapedSQLString of DatabaseUtils.java, there is a possible SQL injection due to unsafe...
Moderate
Unreviewed
CVE-2023-40121
was published
Oct 27, 2023
In spring AMQP versions 1.0.0 to
2.4.16 and 3.0.0 to 3.0.9 , allowed list patterns for...
Moderate
Unreviewed
CVE-2023-34050
was published
Oct 19, 2023
IBM B2B Advanced Communications 1.0.0.0 and IBM Multi-Enterprise Integration Gateway 1.0.0.1...
Moderate
Unreviewed
CVE-2023-24971
was published
Jul 31, 2023
In multiple functions of sta_iface.cpp, there is a possible out of bounds read due to unsafe...
Moderate
Unreviewed
CVE-2023-21209
was published
Jun 28, 2023
In initiateVenueUrlAnqpQueryInternal of sta_iface.cpp, there is a possible out of bounds read due...
Moderate
Unreviewed
CVE-2023-21206
was published
Jun 28, 2023
ProTip!
Advisories are also available from the
GraphQL API