Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

101,880 advisories

Loading
DrayTek Vigor2960 1.3.1_Beta; Vigor3900 1.4.4_Beta; and Vigor300B 1.3.3_Beta, 1.4.2.1_Beta, and 1... High Unreviewed
CVE-2020-8515 was published May 24, 2022
Docker Desktop Community Edition before 2.1.0.1 allows local users to gain privileges by placing... High Unreviewed
CVE-2019-15752 was published May 24, 2022
The MasterStudy LMS WordPress Plugin WordPress plugin before 3.3.24 does not prevent students... High Unreviewed
CVE-2024-5973 was published Jul 22, 2024
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has... High Unreviewed
CVE-2019-5544 was published May 24, 2022
In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds... High Unreviewed
CVE-2020-0069 was published May 24, 2022
The The Moneytizer plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... High Unreviewed
CVE-2023-6968 was published Jun 6, 2024
In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code... High Unreviewed
CVE-2019-0211 was published May 13, 2022
Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to... High Unreviewed
CVE-2017-11774 was published May 13, 2022
Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and... High Unreviewed
CVE-2018-0802 was published May 13, 2022
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7... High Unreviewed
CVE-2017-0143 was published May 14, 2022
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1,... High Unreviewed
CVE-2016-7255 was published May 14, 2022
Progress Telerik UI for ASP.NET AJAX through 2019.3.1023 contains a .NET deserialization... High Unreviewed
CVE-2019-18935 was published May 24, 2022
The PZ Frontend Manager WordPress plugin before 1.0.6 does not have CSRF checks in some places,... High Unreviewed
CVE-2024-6244 was published Jul 22, 2024
Command Injection Vulnerability High
CVE-2021-21315 was published for systeminformation (npm) Feb 16, 2021
Drupal core Unrestricted Upload of File with Dangerous Type High
CVE-2020-13671 was published for drupal/core (Composer) Oct 12, 2021
OpenAM FreeMarker template injection High
CVE-2024-41667 was published for org.openidentityplatform.openam:openam-oauth2 (Maven) Jul 25, 2024
AfterSnows
Improper Input Validation in Apache Struts High
CVE-2006-1547 was published for struts:struts (Maven) May 1, 2022
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Local File Inclusion... High Unreviewed
CVE-2024-6589 was published Jul 25, 2024
Memory request logic vulnerability in the memory module. Impact: Successful exploitation of this... High Unreviewed
CVE-2024-39672 was published Jul 25, 2024
Pytorch use-after-free vulnerability High
CVE-2024-31583 was published for torch (pip) Apr 17, 2024
levpachmanov
A cross site scripting vulnerability exists in GitLab CE/EE affecting all versions from 16.6... High Unreviewed
CVE-2024-7047 was published Jul 25, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix use... High Unreviewed
CVE-2024-40903 was published Jul 12, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix use-after... High Unreviewed
CVE-2024-39496 was published Jul 12, 2024
In the Linux kernel, the following vulnerability has been resolved: greybus: Fix use-after-free... High Unreviewed
CVE-2024-39495 was published Jul 12, 2024
The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a... High Unreviewed
CVE-2023-5633 was published Oct 24, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database