Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

1,255 advisories

Loading
Deserialization of Untrusted Data vulnerability in MainWP MainWP Links Manager Extension.This... High Unreviewed
CVE-2023-23649 was published Mar 28, 2024
Deserialization of Untrusted Data vulnerability in Filter Custom Fields & Taxonomies Light.This... Unknown Unreviewed
CVE-2024-31094 was published Mar 31, 2024
Voltronic Power ViewPower Pro Deserialization of Untrusted Data Remote Code Execution... Critical Unreviewed
CVE-2023-51570 was published Apr 2, 2024
Deserialization of Untrusted Data vulnerability in PickPlugins Product Designer.This issue... High Unreviewed
CVE-2024-31277 was published Apr 7, 2024
Deserialization of Untrusted Data vulnerability in VJInfotech WP Import Export Lite.This issue... Moderate Unreviewed
CVE-2024-31308 was published Apr 7, 2024
A vulnerability was found in EyouCMS 1.6.5. It has been declared as critical. This vulnerability... Moderate Unreviewed
CVE-2024-3431 was published Apr 8, 2024
Transformers Deserialization of Untrusted Data vulnerability Low
CVE-2024-3568 was published for transformers (pip) Apr 10, 2024
Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive:... Moderate Unreviewed
CVE-2024-27985 was published Apr 11, 2024
timber/timber vulnerable to Deserialization of Untrusted Data High
CVE-2024-29800 was published for timber/timber (Composer) Apr 12, 2024
Sonicrrrr dennisenderink
A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI up to 3.9... Moderate Unreviewed
CVE-2024-3740 was published Apr 13, 2024
Deserialization of Untrusted Data vulnerability in WP All Import Import Users from CSV.This issue... Moderate Unreviewed
CVE-2024-32431 was published Apr 15, 2024
Deserialization of Untrusted Data vulnerability in ThemeKraft WooBuddy.This issue affects... High Unreviewed
CVE-2024-32603 was published Apr 18, 2024
Deserialization of Untrusted Data vulnerability in Averta Master Slider.This issue affects Master... High Unreviewed
CVE-2024-32600 was published Apr 18, 2024
A vulnerability classified as critical has been found in Byzoro Smart S80 Management Platform up... Moderate Unreviewed
CVE-2024-4019 was published Apr 20, 2024
Deserialization of Untrusted Data vulnerability in WebToffee Import Export WordPress Users.This... Moderate Unreviewed
CVE-2024-32835 was published Apr 24, 2024
Deserialization of Untrusted Data vulnerability in Import and export users and customers.This... Moderate Unreviewed
CVE-2024-32817 was published Apr 24, 2024
Deserialization of Untrusted Data vulnerability in 8theme XStore Core.This issue affects XStore... Critical Unreviewed
CVE-2024-33553 was published Apr 29, 2024
Deserialization of Untrusted Data vulnerability in Team Yoast Custom field finder.This issue... Moderate Unreviewed
CVE-2024-33641 was published Apr 29, 2024
Deserialization of untrusted data can occur in the R statistical programming language, on any... High Unreviewed
CVE-2024-27322 was published Apr 29, 2024
Inductive Automation Ignition ParameterVersionJavaSerializationCodec Deserialization of Untrusted... Critical Unreviewed
CVE-2023-39475 was published May 3, 2024
Inductive Automation Ignition AbstractGatewayFunction Deserialization of Untrusted Data Remote... High Unreviewed
CVE-2023-39473 was published May 3, 2024
Inductive Automation Ignition JavaSerializationCodec Deserialization of Untrusted Data Remote... Critical Unreviewed
CVE-2023-39476 was published May 3, 2024
Inductive Automation Ignition Base64Element Deserialization of Untrusted Data Remote Code... High Unreviewed
CVE-2023-50220 was published May 3, 2024
Inductive Automation Ignition RunQuery Deserialization of Untrusted Data Remote Code Execution... High Unreviewed
CVE-2023-50219 was published May 3, 2024
Inductive Automation Ignition ExtendedDocumentCodec Deserialization of Untrusted Data Remote Code... High Unreviewed
CVE-2023-50223 was published May 3, 2024
ProTip! Advisories are also available from the GraphQL API