Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

235,784 advisories

Loading
A java deserialization vulnerability in HPE Remote Insight Support allows an unauthenticated... High Unreviewed
CVE-2024-53673 was published Nov 27, 2024
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow... High Unreviewed
CVE-2024-53675 was published Nov 27, 2024
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow... High Unreviewed
CVE-2024-53674 was published Nov 27, 2024
A vulnerability was found in Tenda AC8 16.03.34.09 and classified as critical. Affected by this... High Unreviewed
CVE-2024-11745 was published Nov 26, 2024
A vulnerability has been found in 1000 Projects Portfolio Management System MCA 1.0 and... Moderate Unreviewed
CVE-2024-11744 was published Nov 26, 2024
qiwen-file v1.4.0 was discovered to contain a SQL injection vulnerability via the component ... Unknown Unreviewed
CVE-2024-50942 was published Nov 26, 2024
Microsoft Dynamics 365 Sales Spoofing Vulnerability High Unreviewed
CVE-2024-49053 was published Nov 26, 2024
Missing authentication for critical function in Microsoft Azure PolicyWatch allows an... High Unreviewed
CVE-2024-49052 was published Nov 26, 2024
Missing Authentication for Critical Function vulnerability in OpenText™ AccuRev for LDAP... Critical Unreviewed
CVE-2019-17082 was published Nov 26, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 17.3 before 17.3.7... Moderate Unreviewed
CVE-2024-10240 was published Nov 26, 2024
Valor Apps Easy Folder Listing Pro has a deserialization vulnerability that allows an... Critical Unreviewed
CVE-2024-11145 was published Nov 26, 2024
An issue was discovered in GitLab CE/EE affecting all versions from 16.9.8 before 17.4.5, 17.5... Moderate Unreviewed
CVE-2024-11669 was published Nov 26, 2024
An issue has been discovered in GitLab CE/EE affecting all versions from 16.11 before 17.4.5, 17... Moderate Unreviewed
CVE-2024-11668 was published Nov 26, 2024
A vulnerability, which was classified as problematic, has been found in SourceCodester Best House... Moderate Unreviewed
CVE-2024-11742 was published Nov 26, 2024
A vulnerability, which was classified as problematic, was found in SourceCodester Best House... Moderate Unreviewed
CVE-2024-11743 was published Nov 26, 2024
A denial of service (DoS) condition was discovered in GitLab CE/EE affecting all versions from 13... Moderate Unreviewed
CVE-2024-11828 was published Nov 26, 2024
An authenticated arbitrary file upload vulnerability in the Documents module of SPIP v4.3.3... Moderate Unreviewed
CVE-2024-53619 was published Nov 26, 2024
A cross-site scripting (XSS) vulnerability in the Article module of SPIP v4.3.3 allows... Moderate Unreviewed
CVE-2024-53620 was published Nov 26, 2024
Improper neutralization of input during web page generation ('Cross-site Scripting') in Copilot... Critical Unreviewed
CVE-2024-49038 was published Nov 26, 2024
An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated... High Unreviewed
CVE-2024-49035 was published Nov 26, 2024
An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5... High Unreviewed
CVE-2024-8114 was published Nov 26, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 15.6 prior to 17.4.5... Moderate Unreviewed
CVE-2024-8177 was published Nov 26, 2024
A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions prior... Moderate Unreviewed
CVE-2024-8237 was published Nov 26, 2024
An issue in alist-tvbox v1.7.1 allows a remote attacker to execute arbitrary code via the /atv... Moderate Unreviewed
CVE-2024-48747 was published Nov 26, 2024
The Contact Form 7 Email Add on plugin for WordPress is vulnerable to Local File Inclusion in all... High Unreviewed
CVE-2024-10898 was published Nov 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database