GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
370 advisories
Filter by severity
Deserialization of Untrusted Data vulnerability in MagePeople Team Event Manager and Tickets...
High
Unreviewed
CVE-2024-24796
was published
Feb 12, 2024
Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder &...
High
Unreviewed
CVE-2024-23512
was published
Feb 12, 2024
Deserialization of Untrusted Data vulnerability in UnitedThemes Brooklyn | Creative Multi-Purpose...
High
Unreviewed
CVE-2024-24926
was published
Feb 12, 2024
SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Remote Code Execution...
High
Unreviewed
CVE-2024-23478
was published
Feb 15, 2024
The SolarWinds Security Event Manager was susceptible to Remote Code Execution Vulnerability....
High
Unreviewed
CVE-2024-0692
was published
Mar 1, 2024
CWE-502: Deserialization of Untrusted Data vulnerability exists that could cause remote code...
High
Unreviewed
CVE-2024-2229
was published
Mar 18, 2024
Deserialization of Untrusted Data vulnerability in Themefic Tourfic.This issue affects Tourfic:...
High
Unreviewed
CVE-2024-29136
was published
Mar 19, 2024
In Progress® Telerik® Reporting versions prior to 2024 Q1 (18.0.24.130), a code execution attack...
High
Unreviewed
CVE-2024-1801
was published
Mar 20, 2024
Deserialization of Untrusted Data vulnerability in Social Media Share Buttons By Sygnoos Social...
High
Unreviewed
CVE-2024-2721
was published
Mar 20, 2024
In Progress® Telerik® Reporting versions prior to 2024 Q1 (18.0.24.130), a code execution attack...
High
Unreviewed
CVE-2024-1856
was published
Mar 20, 2024
Deserialization of Untrusted Data vulnerability in WPEverest User Registration.This issue affects...
High
Unreviewed
CVE-2023-27459
was published
Mar 26, 2024
Deserialization of Untrusted Data vulnerability in Echo Plugins Knowledge Base for Documentation,...
High
Unreviewed
CVE-2024-24842
was published
Mar 27, 2024
Deserialization of Untrusted Data vulnerability in Repute Infosystems ARMember.This issue affects...
High
Unreviewed
CVE-2024-30222
was published
Mar 28, 2024
Deserialization of Untrusted Data vulnerability in Acowebs PDF Invoices and Packing Slips For...
High
Unreviewed
CVE-2024-30230
was published
Mar 28, 2024
Deserialization of Untrusted Data vulnerability in GiveWP.This issue affects GiveWP: from n/a...
High
Unreviewed
CVE-2024-30229
was published
Mar 28, 2024
Deserialization of Untrusted Data vulnerability in MainWP MainWP Links Manager Extension.This...
High
Unreviewed
CVE-2023-23649
was published
Mar 28, 2024
Deserialization of Untrusted Data vulnerability in PickPlugins Product Designer.This issue...
High
Unreviewed
CVE-2024-31277
was published
Apr 7, 2024
Deserialization of Untrusted Data vulnerability in ThemeKraft WooBuddy.This issue affects...
High
Unreviewed
CVE-2024-32603
was published
Apr 18, 2024
Deserialization of Untrusted Data vulnerability in Averta Master Slider.This issue affects Master...
High
Unreviewed
CVE-2024-32600
was published
Apr 18, 2024
Deserialization of untrusted data can occur in the R statistical programming language, on any...
High
Unreviewed
CVE-2024-27322
was published
Apr 29, 2024
Inductive Automation Ignition AbstractGatewayFunction Deserialization of Untrusted Data Remote...
High
Unreviewed
CVE-2023-39473
was published
May 3, 2024
Inductive Automation Ignition ResponseParser SerializedResponse Deserialization of Untrusted Data...
High
Unreviewed
CVE-2023-50221
was published
May 3, 2024
Inductive Automation Ignition ExtendedDocumentCodec Deserialization of Untrusted Data Remote Code...
High
Unreviewed
CVE-2023-50223
was published
May 3, 2024
Inductive Automation Ignition RunQuery Deserialization of Untrusted Data Remote Code Execution...
High
Unreviewed
CVE-2023-50219
was published
May 3, 2024
Inductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data...
High
Unreviewed
CVE-2023-50222
was published
May 3, 2024
ProTip!
Advisories are also available from the
GraphQL API