GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 19,327
Composer 3,958
Erlang 29
GitHub Actions 16
Go 1,745
Maven 4,971
npm 3,507
NuGet 609
pip 3,066
Pub 10
RubyGems 832
Rust 780
Swift 34

Unreviewed advisories

All unreviewed 220,861

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

86,637 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability, which was classified as critical, has been found in lahirudanushka School... High Unreviewed

CVE-2024-6268 was published Jun 23, 2024

IBM Security SOAR 51.0.2.0 could allow an authenticated user to execute malicious code loaded... High Unreviewed

CVE-2024-38319 was published Jun 22, 2024

A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as... High Unreviewed

CVE-2024-6253 was published Jun 22, 2024

This affects versions of the package opencart/opencart from 0.0.0. An SQL Injection issue was... High Unreviewed

CVE-2024-21514 was published Jun 22, 2024

The UberMenu plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... High Unreviewed

CVE-2024-3593 was published Jun 22, 2024

This affects versions of the package opencart/opencart from 4.0.0.0. A Zip Slip issue was... High Unreviewed

CVE-2024-21518 was published Jun 22, 2024

The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is... High Unreviewed

CVE-2024-5791 was published Jun 22, 2024

By sending specific queries to the resolver, an attacker can cause named to crash. High Unreviewed

CVE-2022-3080 was published Sep 22, 2022

A security vulnerability has been identified in all supported versions of OpenSSL related to the... High Unreviewed

CVE-2023-0464 was published Mar 22, 2023

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... High Unreviewed

CVE-2023-21930 was published Apr 18, 2023

CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. High Unreviewed

CVE-2023-31484 was published Apr 29, 2023

The X.509 GeneralName type is a generic type for representing different types of names. One of... High Unreviewed

CVE-2020-1971 was published May 24, 2022

Vulnerability in the Java SE product of Oracle Java SE (component: Deployment). The supported... High Unreviewed

CVE-2021-35560 was published May 24, 2022

Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may... High Unreviewed

CVE-2023-45745 was published May 16, 2024

IBM Cognos Analytics 11.2.0 through 11.2.4 and 12.0.0 through 12.0.2 is vulnerable to injection... High Unreviewed

CVE-2024-25047 was published May 2, 2024

OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is... High Unreviewed

CVE-2021-23839 was published May 24, 2022

In the Linux kernel, the following vulnerability has been resolved: fork: defer linking file vma... High Unreviewed

CVE-2024-27022 was published May 1, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Ali2Woo Ali2Woo Lite.This issue affects... High Unreviewed

CVE-2024-37212 was published Jun 21, 2024

Improper privilege management vulnerability in Parallels Desktop Software, which affects versions... High Unreviewed

CVE-2024-6240 was published Jun 21, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed

CVE-2024-35766 was published Jun 21, 2024

Missing Authorization vulnerability in Bill Minozzi WP Tools.This issue affects WP Tools: from n... High Unreviewed

CVE-2022-43453 was published Jun 21, 2024

Type Confusion in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to... High Unreviewed

CVE-2024-6100 was published Jun 20, 2024

Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote... High Unreviewed

CVE-2024-6101 was published Jun 20, 2024

Use after free in Dawn in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to... High Unreviewed

CVE-2024-6103 was published Jun 20, 2024

Out of bounds memory access in Dawn in Google Chrome prior to 126.0.6478.114 allowed a remote... High Unreviewed

CVE-2024-6102 was published Jun 20, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

86,637 advisories