GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,427 advisories
Filter by severity
A vulnerability was found in 07FLYCMS, 07FLY-CMS and 07FlyCRM 1.3.8. It has been declared as...
Moderate
Unreviewed
CVE-2024-9855
was published
Oct 11, 2024
A vulnerability has been found in Codezips Tourist Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-9815
was published
Oct 11, 2024
A vulnerability was found in Codezips Tourist Management System 1.0 and classified as critical....
Moderate
Unreviewed
CVE-2024-9816
was published
Oct 11, 2024
A vulnerability, which was classified as critical, has been found in Codezips Online Shopping...
Moderate
Unreviewed
CVE-2024-9794
was published
Oct 10, 2024
InDesign Desktop versions 19.4, 18.5.3 and earlier are affected by an Unrestricted Upload of File...
High
Unreviewed
CVE-2024-45137
was published
Oct 9, 2024
InCopy versions 19.4, 18.5.3 and earlier are affected by an Unrestricted Upload of File with...
High
Unreviewed
CVE-2024-45136
was published
Oct 9, 2024
Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Unrestricted Upload of...
High
Unreviewed
CVE-2024-47423
was published
Oct 9, 2024
Livewire Remote Code Execution on File Uploads
High
CVE-2024-47823
was published
for
livewire/livewire
(Composer)
Oct 8, 2024
SAP BusinessObjects Business Intelligence Platform allows an authenticated user to send a...
High
Unreviewed
CVE-2024-37179
was published
Oct 8, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Bit Apps Bit Form – Contact Form...
High
Unreviewed
CVE-2024-47319
was published
Oct 5, 2024
The Hash Form – Drag & Drop Form Builder plugin for WordPress is vulnerable to limited file...
Moderate
Unreviewed
CVE-2024-9417
was published
Oct 5, 2024
The Bit File Manager – 100% Free & Open Source File Manager and Code Editor for WordPress plugin...
Moderate
Unreviewed
CVE-2024-8743
was published
Oct 5, 2024
File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote...
High
Unreviewed
CVE-2024-37868
was published
Oct 4, 2024
File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote...
High
Unreviewed
CVE-2024-37869
was published
Oct 4, 2024
This vulnerability exists in the Shilpi Client Dashboard due to improper validation of files...
High
Unreviewed
CVE-2024-47655
was published
Oct 4, 2024
Zenario allows authenticated admin users to upload PDF files containing malicious code
Low
CVE-2024-45960
was published
for
tribalsystems/zenario
(Composer)
Oct 2, 2024
October allows an admin account to upload PDF containing malicious JavaScript
Low
CVE-2024-45962
was published
for
october/october
(Composer)
Oct 2, 2024
The WP Hotel Booking plugin for WordPress is vulnerable to arbitrary file uploads due to missing...
High
Unreviewed
CVE-2024-7855
was published
Oct 2, 2024
LibreNMS vulnerable to Stored Cross-site Scripting via File Upload
Low
CVE-2024-47528
was published
for
librenms/librenms
(Composer)
Oct 1, 2024
The Wechat Social login plugin for WordPress is vulnerable to arbitrary file uploads due to...
Critical
Unreviewed
CVE-2024-9108
was published
Oct 1, 2024
An arbitrary file upload vulnerability in YPay 1.2.0 allows attackers to execute arbitrary code...
High
Unreviewed
CVE-2024-46441
was published
Sep 27, 2024
A vulnerability has been found in kalvinGit kvf-admin up to...
Moderate
Unreviewed
CVE-2024-9280
was published
Sep 27, 2024
A vulnerability, which was classified as critical, has been found in HuankeMao SCRM up to 0.0.3....
Moderate
Unreviewed
CVE-2024-9278
was published
Sep 27, 2024
Agnai vulnerable to Remote Code Execution via JS Upload using Directory Traversal
Critical
CVE-2024-47169
was published
for
agnai
(npm)
Sep 26, 2024
The Advanced File Manager plugin for WordPress is vulnerable to arbitrary file uploads via the ...
High
Unreviewed
CVE-2024-8126
was published
Sep 26, 2024
ProTip!
Advisories are also available from the
GraphQL API