GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
100,773 advisories
Filter by severity
Incorrect handling of certain string inputs may result in MongoDB Rust driver constructing...
Moderate
Unreviewed
CVE-2024-6382
was published
Jul 2, 2024
A vulnerability classified as critical was found in linlinjava litemall up to 1.8.0. Affected by...
Moderate
Unreviewed
CVE-2024-6452
was published
Jul 2, 2024
In the Twilio Authy API, accessed by Authy Android before 25.1.0 and Authy iOS before 26.1.0, an...
Moderate
Unreviewed
CVE-2024-39891
was published
Jul 2, 2024
The bson_strfreev function in the MongoDB C driver library may be susceptible to an integer...
Moderate
Unreviewed
CVE-2024-6381
was published
Jul 2, 2024
Vulnerability in Delinea Centrify PAS v. 21.3 and possibly others. The application is prone to...
Moderate
Unreviewed
CVE-2024-5866
was published
Jul 2, 2024
A stored cross-site scripting (XSS) vulnerability exists in ResidenceCMS 2.10.1 that allows a low...
Moderate
Unreviewed
CVE-2024-39143
was published
Jul 2, 2024
A vulnerability was found in SourceCodester Home Owners Collection Management System 1.0 and...
Moderate
Unreviewed
CVE-2024-6439
was published
Jul 2, 2024
Under certain circumstances unnecessary user details are provided within system logs
Moderate
Unreviewed
CVE-2024-32757
was published
Jul 2, 2024
The Post Meta Data Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-6264
was published
Jul 2, 2024
The Ultimate Blocks – WordPress Blocks Plugin plugin for WordPress is vulnerable to Stored Cross...
Moderate
Unreviewed
CVE-2024-4268
was published
Jul 2, 2024
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthorized user...
Moderate
Unreviewed
CVE-2024-6088
was published
Jul 2, 2024
Under certain circumstances the Linux users credentials may be recovered by an authenticated user.
Moderate
Unreviewed
CVE-2024-32756
was published
Jul 2, 2024
A vulnerability was found in SourceCodester Home Owners Collection Management System 1.0. It has...
Moderate
Unreviewed
CVE-2024-6440
was published
Jul 2, 2024
A vulnerability has been found in Hitout Carsale 1.0 and classified as critical. This...
Moderate
Unreviewed
CVE-2024-6438
was published
Jul 2, 2024
A vulnerability was found in ORIPA up to 1.72. It has been declared as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-6441
was published
Jul 2, 2024
Under certain circumstances the web interface users credentials may be recovered by an...
Moderate
Unreviewed
CVE-2024-32932
was published
Jul 2, 2024
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.1.0 allows local attackers to...
Moderate
Unreviewed
CVE-2023-51778
was published
Jul 2, 2024
Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.1.0 allows local attackers to...
Moderate
Unreviewed
CVE-2023-51777
was published
Jul 2, 2024
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to...
Moderate
Unreviewed
CVE-2024-22103
was published
Jul 2, 2024
Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to...
Moderate
Unreviewed
CVE-2024-22102
was published
Jul 2, 2024
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to...
Moderate
Unreviewed
CVE-2024-22104
was published
Jul 2, 2024
Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.7.0 allows local attackers to...
Moderate
Unreviewed
CVE-2024-25087
was published
Jul 2, 2024
Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to...
Moderate
Unreviewed
CVE-2024-22105
was published
Jul 2, 2024
Improper input validation?in parsing an item type from RTCP SDES packet in librtp.so prior to SMR...
Moderate
Unreviewed
CVE-2024-34590
was published
Jul 2, 2024
Improper input validation in parsing an item data from RTCP SDES packet in librtp.so prior to SMR...
Moderate
Unreviewed
CVE-2024-34591
was published
Jul 2, 2024
ProTip!
Advisories are also available from the
GraphQL API