Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,299
Erlang
31
GitHub Actions
21
Go
2,064
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+

67 advisories

Loading
An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image... Moderate Unreviewed
CVE-2023-49863 was published Jan 10, 2024
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to... Moderate Unreviewed
CVE-2023-20234 was published Aug 23, 2023
A vulnerability in the file download feature of Cisco Firepower Management Center (FMC) Software... Moderate Unreviewed
CVE-2023-20114 was published Nov 1, 2023
A vulnerability classified as problematic was found in ForU CMS up to 2020-06-23. Affected by... Moderate Unreviewed
CVE-2024-0728 was published Jan 19, 2024
A file disclosure vulnerability in the Palo Alto Networks Cortex XSOAR server software enables an... Moderate Unreviewed
CVE-2023-0003 was published Feb 8, 2023
php-svg-lib lacks path validation on font through SVG inline styles Moderate
CVE-2024-25117 was published for phenx/php-svg-lib (Composer) Feb 21, 2024
A vulnerability, which was classified as critical, was found in SourceCodester Inventory... Moderate Unreviewed
CVE-2023-4749 was published Sep 4, 2023
A vulnerability, which was classified as critical, has been found in SourceCodester Insurance... Moderate Unreviewed
CVE-2024-2150 was published Mar 3, 2024
A vulnerability was found in SourceCodester Best POS Management System 1.0 and classified as... Moderate Unreviewed
CVE-2024-2155 was published Mar 4, 2024
IBM Watson CP4D Data Stores 4.6.0 through 4.6.3 could allow a user with physical access and... Moderate Unreviewed
CVE-2023-26282 was published Mar 5, 2024
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 could allow an attacker to overwrite a log message... Moderate Unreviewed
CVE-2023-47147 was published Mar 15, 2024
GeoServer Arbitrary file renaming vulnerability in REST Coverage/Data Store API Moderate
CVE-2024-23634 was published for org.geoserver:gs-restconfig (Maven) Mar 20, 2024
sikeoka
A vulnerability was found in Campcodes House Rental Management System 1.0. It has been declared... Moderate Unreviewed
CVE-2024-2917 was published Mar 27, 2024
CloudLinux CageFS 7.0.8-2 or below insufficiently restricts file paths supplied to the sendmail... Moderate Unreviewed
CVE-2020-36772 was published Jan 22, 2024
A file write vulnerability exists in the OAS Engine Tags Configuration functionality of Open... Moderate Unreviewed
CVE-2024-21870 was published Apr 3, 2024
A file write vulnerability exists in the OAS Engine Save Security Configuration functionality of... Moderate Unreviewed
CVE-2024-22178 was published Apr 3, 2024
A file disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated... Moderate Unreviewed
CVE-2023-0008 was published May 10, 2023
Windows Compressed Folder Tampering Vulnerability Moderate Unreviewed
CVE-2024-26185 was published Mar 12, 2024
Moodle External Control of File Name or Path vulnerability Moderate
CVE-2023-30943 was published for moodle/moodle (Composer) May 2, 2023
NVIDIA Triton Inference Server for Linux contains a vulnerability in the tracing API, where a... Moderate Unreviewed
CVE-2024-0100 was published May 14, 2024
A vulnerability was found in Campcodes Online Laundry Management System 1.0 and classified as... Moderate Unreviewed
CVE-2024-4818 was published May 14, 2024
Dell PowerScale OneFS versions 8.2.x through 9.7.0.2 contains an external control of file name or... Moderate Unreviewed
CVE-2024-25965 was published May 14, 2024
An issue was discovered in Logpoint before 7.4.0. It allows Local File Inclusion (LFI) when an... Moderate Unreviewed
CVE-2024-33860 was published May 7, 2024
Remote Command program allows an attacker to read any file using a Local File Inclusion... Moderate Unreviewed
CVE-2024-27175 was published Jun 14, 2024
External Control of File Name or Path (CWE-73) in the Controller 6000 and Controller 7000 allows... Moderate Unreviewed
CVE-2024-23317 was published Jul 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database