GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,287 advisories
Filter by severity
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows...
High
Unreviewed
CVE-2024-42676
was published
Aug 15, 2024
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an...
Critical
Unreviewed
CVE-2024-39397
was published
Aug 14, 2024
The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to arbitrary file...
High
Unreviewed
CVE-2024-4389
was published
Aug 14, 2024
Dr.ID Access Control System from SECOM does not properly validate a specific page parameter,...
Critical
Unreviewed
CVE-2024-7732
was published
Aug 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in BerqWP allows Code Injection...
Critical
Unreviewed
CVE-2024-43160
was published
Aug 13, 2024
The Media Library Assistant plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-6823
was published
Aug 13, 2024
SAP BusinessObjects Business Intelligence
Platform allows an authenticated attacker to upload...
Moderate
Unreviewed
CVE-2024-42375
was published
Aug 13, 2024
SAP BusinessObjects Business Intelligence
Platform allows an authenticated attacker to upload...
Low
Unreviewed
CVE-2024-41731
was published
Aug 13, 2024
SAP BusinessObjects Business Intelligence
Platform allows an authenticated attacker to upload...
Low
Unreviewed
CVE-2024-28166
was published
Aug 13, 2024
A vulnerability was found in Fujian mwcms 1.0.0. It has been rated as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-7706
was published
Aug 13, 2024
A vulnerability was found in Fujian mwcms 1.0.0. It has been declared as critical. Affected by...
Moderate
Unreviewed
CVE-2024-7705
was published
Aug 13, 2024
ThreatSonar Anti-Ransomware from TeamT5 does not properly validate the content of uploaded files....
High
Unreviewed
CVE-2024-7694
was published
Aug 12, 2024
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager...
High
Unreviewed
CVE-2024-41913
was published
Aug 6, 2024
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-7506
was published
Aug 6, 2024
A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-7500
was published
Aug 6, 2024
The CRM Perks Forms plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-7484
was published
Aug 6, 2024
The Blox Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing...
High
Unreviewed
CVE-2024-6315
was published
Aug 6, 2024
A vulnerability, which was classified as critical, was found in itsourcecode Laravel Accounting...
Moderate
Unreviewed
CVE-2024-7495
was published
Aug 6, 2024
A Unrestricted upload of file with dangerous type vulnerability in meeting management function in...
Critical
Unreviewed
CVE-2024-6117
was published
Aug 5, 2024
A vulnerability has been found in itsourcecode Placement Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-7450
was published
Aug 4, 2024
The YayExtra – WooCommerce Extra Product Options plugin for WordPress is vulnerable to arbitrary...
Critical
Unreviewed
CVE-2024-7257
was published
Aug 3, 2024
A vulnerability was found in Baidu UEditor 1.4.3.3. It has been classified as problematic. This...
Moderate
Unreviewed
CVE-2024-7342
was published
Aug 1, 2024
Unrestricted upload of file with dangerous type vulnerability exists in ELECOM wireless LAN...
Moderate
Unreviewed
CVE-2024-34021
was published
Aug 1, 2024
A vulnerability, which was classified as critical, was found in YouDianCMS 7. Affected is an...
Moderate
Unreviewed
CVE-2024-7329
was published
Aug 1, 2024
A vulnerability was found in itsourcecode Alton Management System 1.0 and classified as critical....
Moderate
Unreviewed
CVE-2024-7277
was published
Jul 31, 2024
ProTip!
Advisories are also available from the
GraphQL API