GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,971
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,091
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
221,545 advisories
Filter by severity
Improper input validation in parsing RTCP SDES packet in librtp.so prior to SMR Jul-2024 Release...
Moderate
Unreviewed
CVE-2024-34592
was published
Jul 2, 2024
The Cost Calculator Builder plugin for WordPress is vulnerable to unauthorized modification of...
Moderate
Unreviewed
CVE-2024-6012
was published
Jul 2, 2024
Improper verification of intent by broadcast receiver vulnerability in GalaxyStore prior to...
Moderate
Unreviewed
CVE-2024-34601
was published
Jul 2, 2024
Improper access control in Dar service prior to SMR Jul-2024 Release 1 allows local attackers to...
High
Unreviewed
CVE-2024-20895
was published
Jul 2, 2024
Use of implicit intent for sensitive communication in SoftphoneClient in IMS service prior to SMR...
Moderate
Unreviewed
CVE-2024-20898
was published
Jul 2, 2024
Improper handling of exceptional conditions in Secure Folder prior to SMR Jul-2024 Release 1...
Moderate
Unreviewed
CVE-2024-20894
was published
Jul 2, 2024
Use of implicit intent for sensitive communication in Configuration message prior to SMR Jul-2024...
Moderate
Unreviewed
CVE-2024-20896
was published
Jul 2, 2024
Use of implicit intent for sensitive communication in FCM function in IMS service prior to SMR...
Moderate
Unreviewed
CVE-2024-20897
was published
Jul 2, 2024
Improper access control in launchFullscreenIntent of SystemUI prior to SMR Jul-2024 Release 1...
High
Unreviewed
CVE-2024-20891
was published
Jul 2, 2024
Improper access control in OneUIHome prior to SMR Jul-2024 Release 1 allows local attackers to...
High
Unreviewed
CVE-2024-20888
was published
Jul 2, 2024
Improper authentication in BLE prior to SMR Jul-2024 Release 1 allows adjacent attackers to pair...
Moderate
Unreviewed
CVE-2024-20889
was published
Jul 2, 2024
Improper verification of signature in FilterProvider prior to SMR Jul-2024 Release 1 allows local...
Moderate
Unreviewed
CVE-2024-20892
was published
Jul 2, 2024
Improper input validation in libmediaextractorservice.so prior to SMR Jul-2024 Release 1 allows...
Moderate
Unreviewed
CVE-2024-20893
was published
Jul 2, 2024
Improper input validation in BLE prior to SMR Jul-2024 Release 1 allows adjacent attackers to...
Moderate
Unreviewed
CVE-2024-20890
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-36243
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type...
Low
Unreviewed
CVE-2024-31071
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-36260
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type...
Low
Unreviewed
CVE-2024-36278
was published
Jul 2, 2024
The Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free...
Moderate
Unreviewed
CVE-2024-5260
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-37030
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-37185
was published
Jul 2, 2024
Web services managed by Edito CMS (Content Management System) in versions from 3.5 through 3.25...
High
Unreviewed
CVE-2024-4836
was published
Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-37077
was published
Jul 2, 2024
A vulnerability allows attackers to download source code or an executable from a remote location...
Critical
Unreviewed
CVE-2023-41921
was published
Jul 2, 2024
The user management section of the web application permits the creation of user accounts with...
High
Unreviewed
CVE-2023-41923
was published
Jul 2, 2024
ProTip!
Advisories are also available from the
GraphQL API