Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,049
Erlang
29
GitHub Actions
18
Go
1,871
Maven
5,000+
npm
3,597
NuGet
638
pip
3,198
Pub
10
RubyGems
852
Rust
809
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

816 advisories

A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP 7 V16 ... High Unreviewed
CVE-2022-45147 was published Jul 9, 2024
A vulnerability has been identified in SIMATIC STEP 7 Safety V18 (All versions < V18 Update 2).... High Unreviewed
CVE-2023-32737 was published Jul 9, 2024
A vulnerability has been identified in SIMATIC STEP 7 Safety V16 (All versions < V16 Update 7),... High Unreviewed
CVE-2023-32735 was published Jul 9, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38024 was published Jul 9, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38023 was published Jul 9, 2024
Microsoft SharePoint Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38094 was published Jul 9, 2024
A vulnerability was found in zmops ArgusDBM up to 0.1.0. It has been classified as critical.... Moderate Unreviewed
CVE-2024-6644 was published Jul 10, 2024
A vulnerability was found in WuKongOpenSource Wukong_nocode up to 20230807. It has been declared... Moderate Unreviewed
CVE-2024-6645 was published Jul 10, 2024
It was discovered that a previous vulnerability was not completely fixed with SolarWinds Access... Critical Unreviewed
CVE-2024-28074 was published Jul 17, 2024
A vulnerability has been found in ZhongBangKeJi CRMEB up to 5.4.0 and classified as critical.... Moderate Unreviewed
CVE-2024-6943 was published Jul 21, 2024
A vulnerability was found in ZhongBangKeJi CRMEB up to 5.4.0 and classified as critical. Affected... Moderate Unreviewed
CVE-2024-6944 was published Jul 21, 2024
Deserialization of Untrusted Data vulnerability in WP MEDIA SAS Search & Replace.This issue... Moderate Unreviewed
CVE-2024-38759 was published Jul 22, 2024
A deserialization of untrusted data vulnerability exists in NI VeriStand that may result in... High Unreviewed
CVE-2024-6675 was published Jul 22, 2024
A deserialization of untrusted data vulnerability exists in NI VeriStand DataLogging Server that... Critical Unreviewed
CVE-2024-6793 was published Jul 22, 2024
A deserialization of untrusted data vulnerability exists in NI VeriStand Waveform Streaming ... Critical Unreviewed
CVE-2024-6794 was published Jul 22, 2024
In Progress® Telerik® Report Server versions prior to 2024 Q2 (10.1.24.709), a remote code... Critical Unreviewed
CVE-2024-6327 was published Jul 24, 2024
A vulnerability was found in kirilkirkov Ecommerce-Laravel-Bootstrap up to... Moderate Unreviewed
CVE-2024-7067 was published Jul 24, 2024
The Flipbox Builder plugin for WordPress is vulnerable to PHP Object Injection in all versions up... High Unreviewed
CVE-2024-6152 was published Jul 27, 2024
Deserialization of Untrusted Data vulnerability in MotoPress Timetable and Event Schedule allows... Moderate Unreviewed
CVE-2024-39630 was published Aug 1, 2024
Deserialization of Untrusted Data vulnerability in CodeSolz Better Find and Replace.This issue... High Unreviewed
CVE-2024-39636 was published Aug 2, 2024
An insecure deserialization vulnerability in web component of EPMM prior to 12.1.0.1 allows an... High Unreviewed
CVE-2024-36131 was published Aug 7, 2024
The MultiPurpose theme for WordPress is vulnerable to PHP Object Injection in all versions up to,... High Unreviewed
CVE-2024-7486 was published Aug 8, 2024
The The Next theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and... High Unreviewed
CVE-2024-7561 was published Aug 8, 2024
The News Flash theme for WordPress is vulnerable to PHP Object Injection in all versions up to,... High Unreviewed
CVE-2024-7560 was published Aug 8, 2024
Deserialization of Untrusted Data vulnerability in Roland Barker, xnau webdesign Participants... Critical Unreviewed
CVE-2024-43141 was published Aug 13, 2024
ProTip! Advisories are also available from the GraphQL API