GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,440
Erlang
29
GitHub Actions
16
Go
1,666
Maven
4,927
npm
3,454
NuGet
594
pip
2,862
Pub
10
RubyGems
823
Rust
766
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
216,200 advisories
Filter by severity
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the PageID...
Unknown
Unreviewed
CVE-2024-25531
was published
May 8, 2024
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the bt_id...
Unknown
Unreviewed
CVE-2024-25532
was published
May 8, 2024
Dell PowerProtect DM5500 version 5.15.0.0 and prior contain an Arbitrary File Delete via Path...
Moderate
Unreviewed
CVE-2024-24908
was published
May 8, 2024
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id...
Unknown
Unreviewed
CVE-2024-25527
was published
May 8, 2024
TOTOLINK EX1800T V9.1.0cu.2112_B20220316 has a vulnerability in the apcliEncrypType parameter...
Unknown
Unreviewed
CVE-2024-34257
was published
May 8, 2024
A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an...
Unknown
Unreviewed
CVE-2024-24788
was published
May 8, 2024
libmodbus v3.1.10 is vulnerable to Buffer Overflow via the modbus_write_bits function. This issue...
Unknown
Unreviewed
CVE-2024-34244
was published
May 8, 2024
An issue in Open5GS v.2.7.0 allows an attacker to cause a denial of service via the 64...
Unknown
Unreviewed
CVE-2024-33382
was published
May 8, 2024
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id...
Unknown
Unreviewed
CVE-2024-25529
was published
May 8, 2024
Dell Update Manager Plugin, versions 1.4.0 through 1.5.0, contains a Plain-text Password Storage...
Low
Unreviewed
CVE-2024-28971
was published
May 8, 2024
A SQL injection vulnerability in unit.php in Sonic Shopfloor.guide before 3.1.3 allows remote...
Unknown
Unreviewed
CVE-2024-31961
was published
May 8, 2024
Error messages in RuvarOA v6.01 and v12.01 were discovered to leak the physical path of the...
Unknown
Unreviewed
CVE-2024-25533
was published
May 8, 2024
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id...
Unknown
Unreviewed
CVE-2024-25528
was published
May 8, 2024
Dell PowerProtect DM5500 version 5.15.0.0 and prior contains an insecure deserialization...
Low
Unreviewed
CVE-2024-22460
was published
May 8, 2024
On Darwin, building a Go module which contains CGO can trigger arbitrary code execution when...
Unknown
Unreviewed
CVE-2024-24787
was published
May 8, 2024
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the PageID...
Unknown
Unreviewed
CVE-2024-25530
was published
May 8, 2024
Under certain conditions, a potential data leak may occur in the Traffic Management Microkernels...
Moderate
Unreviewed
CVE-2024-32761
was published
May 8, 2024
An improper certificate validation vulnerability exists in BIG-IP Next Central Manager and may...
Moderate
Unreviewed
CVE-2024-33612
was published
May 8, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Unknown
Unreviewed
CVE-2024-32113
was published
May 8, 2024
BIG-IP Next Central Manager (CM) may allow an unauthenticated, remote attacker to obtain the BIG...
High
Unreviewed
CVE-2024-32049
was published
May 8, 2024
A stored cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP...
High
Unreviewed
CVE-2024-31156
was published
May 8, 2024
A vulnerability was found in BlueNet Technology Clinical Browsing System 1.2.1. It has been...
Moderate
Unreviewed
CVE-2024-4654
was published
May 8, 2024
PTC Codebeamer is vulnerable to a cross site scripting vulnerability that could allow an...
High
Unreviewed
CVE-2024-3951
was published
May 8, 2024
A reflected cross-site scripting (XSS) vulnerability exist in undisclosed page of the BIG-IP...
Moderate
Unreviewed
CVE-2024-33604
was published
May 8, 2024
A vulnerability was found in BlueNet Technology Clinical Browsing System 1.2.1 and classified as...
Moderate
Unreviewed
CVE-2024-4653
was published
May 8, 2024
ProTip!
Advisories are also available from the
GraphQL API