GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
370 advisories
Filter by severity
Deserialization of Untrusted Data vulnerability in Thomas Belser Asgaros Forum.This issue affects...
High
Unreviewed
CVE-2024-22284
was published
Jan 24, 2024
A vulnerability, which was classified as critical, was found in Hecheng Leadshop up to 1.4.20....
High
Unreviewed
CVE-2024-0739
was published
Jan 20, 2024
A vulnerability classified as critical has been found in ZhiCms up to 4.0. This affects an...
High
Unreviewed
CVE-2024-0603
was published
Jan 17, 2024
The Formidable Forms WordPress plugin before 6.2 unserializes user input, which could allow...
High
Unreviewed
CVE-2023-1405
was published
Jan 16, 2024
A CWE-502: Deserialization of untrusted data vulnerability exists that could allow an attacker...
High
Unreviewed
CVE-2023-7032
was published
Jan 9, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-21318
was published
Jan 9, 2024
Deserialization of Untrusted Data vulnerability in Live Composer Team Page Builder: Live Composer...
High
Unreviewed
CVE-2023-52206
was published
Jan 8, 2024
The Ovic Responsive WPBakery WordPress plugin before 1.2.9 does not limit which options can be...
High
Unreviewed
CVE-2023-5235
was published
Jan 8, 2024
The Slider Revolution WordPress plugin before 6.6.19 does not prevent users with at least the...
High
Unreviewed
CVE-2023-6528
was published
Jan 8, 2024
Deserialization of Untrusted Data vulnerability in WooCommerce Product Add-Ons.This issue affects...
High
Unreviewed
CVE-2023-32795
was published
Dec 28, 2023
Deserialization of Untrusted Data vulnerability in GiveWP GiveWP – Donation Plugin and...
High
Unreviewed
CVE-2023-32513
was published
Dec 28, 2023
Deserialization of Untrusted Data vulnerability in PenciDesign Soledad – Multipurpose, Newspaper,...
High
Unreviewed
CVE-2023-49826
was published
Dec 21, 2023
Deserialization of Untrusted Data vulnerability in Rocketgenius Inc. Gravity Forms.This issue...
High
Unreviewed
CVE-2023-28782
was published
Dec 20, 2023
Deserialization of Untrusted Data vulnerability in Themify Themify Ultra.This issue affects...
High
Unreviewed
CVE-2023-46147
was published
Dec 20, 2023
Deserialization of Untrusted Data vulnerability in UX-themes Flatsome | Multi-Purpose Responsive...
High
Unreviewed
CVE-2023-40555
was published
Dec 20, 2023
Deserialization of Untrusted Data vulnerability in Master Slider Master Slider Pro.This issue...
High
Unreviewed
CVE-2023-47507
was published
Dec 20, 2023
Deserialization of Untrusted Data vulnerability in Rajnish Arora Recently Viewed Products.This...
High
Unreviewed
CVE-2023-34027
was published
Dec 19, 2023
Deserialization of Untrusted Data vulnerability in Themesflat Themesflat Addons For Elementor...
High
Unreviewed
CVE-2023-37390
was published
Dec 19, 2023
Deserialization of Untrusted Data vulnerability in Gordon Böhme, Antonio Leutsch Structured...
High
Unreviewed
CVE-2023-49819
was published
Dec 19, 2023
IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an...
High
Unreviewed
CVE-2023-45185
was published
Dec 14, 2023
A vulnerability, which was classified as critical, was found in D-Link DIR-846 FW100A53DBR. This...
High
Unreviewed
CVE-2023-6580
was published
Dec 8, 2023
An issue in the box_deserialize_reusing function in openlink virtuoso-opensource v7.2.11 allows...
High
Unreviewed
CVE-2023-48952
was published
Nov 29, 2023
Unsafe variable extraction in bitrix/modules/main/classes/general/user_options.php in Bitrix24 22...
High
Unreviewed
CVE-2023-1714
was published
Nov 1, 2023
The WP Simple Galleries plugin for WordPress is vulnerable to PHP Object Injection in versions up...
High
Unreviewed
CVE-2023-5583
was published
Oct 30, 2023
The Essential Blocks plugin for WordPress is vulnerable to PHP Object Injection in versions up to...
High
Unreviewed
CVE-2023-4386
was published
Oct 20, 2023
ProTip!
Advisories are also available from the
GraphQL API