GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
399 advisories
Filter by severity
Deserialization of Untrusted Data vulnerability in Flowcraft UX Design Studio Advanced...
Critical
Unreviewed
CVE-2024-52411
was published
Nov 17, 2024
Deserialization of Untrusted Data vulnerability in Stephen Cui Xin allows Object Injection.This...
Critical
Unreviewed
CVE-2024-52412
was published
Nov 17, 2024
Deserialization of Untrusted Data vulnerability in DMC Airin Blog allows Object Injection.This...
Critical
Unreviewed
CVE-2024-52413
was published
Nov 17, 2024
Deserialization of Untrusted Data vulnerability in Anthony Carbon WDES Responsive Mobile Menu...
Critical
Unreviewed
CVE-2024-52414
was published
Nov 17, 2024
Deserialization of Untrusted Data vulnerability in Phan An AJAX Random Posts allows Object...
Critical
Unreviewed
CVE-2024-52409
was published
Nov 17, 2024
A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to...
Critical
Unreviewed
CVE-2024-37285
was published
Nov 14, 2024
A vulnerability has been identified in PP TeleControl Server Basic 1000 to 5000 V3.1 (6NH9910...
Critical
Unreviewed
CVE-2024-44102
was published
Nov 12, 2024
Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a...
Critical
Unreviewed
CVE-2024-10456
was published
Oct 30, 2024
Deserialization of Untrusted Data vulnerability in Daniel Schmitzer DS.DownloadList allows Object...
Critical
Unreviewed
CVE-2024-50507
was published
Oct 30, 2024
A Deserialization of Untrusted Data vulnerability in chainer v7.8.1.post1 leads to execution of...
Critical
Unreviewed
CVE-2024-48206
was published
Oct 29, 2024
In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE.
Critical
Unreviewed
CVE-2024-48063
was published
Oct 29, 2024
Deserialization of Untrusted Data vulnerability in Brandon Clark SiteBuilder Dynamic Components...
Critical
Unreviewed
CVE-2024-49625
was published
Oct 20, 2024
Deserialization of Untrusted Data vulnerability in Smartdevth Advanced Advertising System allows...
Critical
Unreviewed
CVE-2024-49624
was published
Oct 20, 2024
Deserialization of Untrusted Data vulnerability in Piyushmca Shipyaari Shipping Management allows...
Critical
Unreviewed
CVE-2024-49626
was published
Oct 20, 2024
Deserialization of Untrusted Data vulnerability in Giveaway Boost allows Object Injection.This...
Critical
Unreviewed
CVE-2024-49332
was published
Oct 20, 2024
Deserialization of Untrusted Data vulnerability in Scott Olson My Reading Library allows Object...
Critical
Unreviewed
CVE-2024-49318
was published
Oct 17, 2024
Deserialization of Untrusted Data vulnerability in Grayson Robbins Disc Golf Manager allows...
Critical
Unreviewed
CVE-2024-48026
was published
Oct 16, 2024
Deserialization of Untrusted Data vulnerability in Boyan Raichev IP Loc8 allows Object Injection...
Critical
Unreviewed
CVE-2024-48028
was published
Oct 16, 2024
Deserialization of Untrusted Data vulnerability in Gabriele Valenti Telecash Ricaricaweb allows...
Critical
Unreviewed
CVE-2024-48030
was published
Oct 16, 2024
Deserialization of Untrusted Data vulnerability in Al Imran Akash Recently allows Object...
Critical
Unreviewed
CVE-2024-49218
was published
Oct 16, 2024
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP...
Critical
Unreviewed
CVE-2024-9634
was published
Oct 16, 2024
Deserialization of Untrusted Data vulnerability in Elie Burstein, Baptiste Gourdin Talkback...
Critical
Unreviewed
CVE-2024-48033
was published
Oct 11, 2024
Deserialization of Untrusted Data vulnerability in Eyecix JobSearch allows Object Injection.This...
Critical
Unreviewed
CVE-2024-47636
was published
Oct 10, 2024
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP...
Critical
Unreviewed
CVE-2024-8353
was published
Sep 28, 2024
The Prisna GWT – Google Website Translator plugin for WordPress is vulnerable to PHP Object...
Critical
Unreviewed
CVE-2024-8514
was published
Sep 25, 2024
ProTip!
Advisories are also available from the
GraphQL API