Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

440 advisories

Loading
Deserialization of Untrusted Data vulnerability in Repute Infosystems ARMember.This issue affects... High Unreviewed
CVE-2024-30222 was published Mar 28, 2024
Deserialization of Untrusted Data vulnerability in Echo Plugins Knowledge Base for Documentation,... High Unreviewed
CVE-2024-24842 was published Mar 27, 2024
Deserialization of Untrusted Data vulnerability in WPEverest User Registration.This issue affects... High Unreviewed
CVE-2023-27459 was published Mar 26, 2024
Gibbon through 26.0.00 allows remote authenticated users to conduct PHP deserialization attacks... High Unreviewed
CVE-2024-24725 was published Mar 24, 2024
In Progress® Telerik® Reporting versions prior to 2024 Q1 (18.0.24.130), a code execution attack... High Unreviewed
CVE-2024-1856 was published Mar 20, 2024
In Progress® Telerik® Reporting versions prior to 2024 Q1 (18.0.24.130), a code execution attack... High Unreviewed
CVE-2024-1801 was published Mar 20, 2024
Deserialization of Untrusted Data vulnerability in Social Media Share Buttons By Sygnoos Social... High Unreviewed
CVE-2024-2721 was published Mar 20, 2024
Deserialization of Untrusted Data vulnerability in Themefic Tourfic.This issue affects Tourfic:... High Unreviewed
CVE-2024-29136 was published Mar 19, 2024
CWE-502: Deserialization of Untrusted Data vulnerability exists that could cause remote code... High Unreviewed
CVE-2024-2229 was published Mar 18, 2024
The SolarWinds Security Event Manager was susceptible to Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-0692 was published Mar 1, 2024
SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Remote Code Execution... High Unreviewed
CVE-2024-23478 was published Feb 15, 2024
Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder &... High Unreviewed
CVE-2024-23512 was published Feb 12, 2024
Deserialization of Untrusted Data vulnerability in UnitedThemes Brooklyn | Creative Multi-Purpose... High Unreviewed
CVE-2024-24926 was published Feb 12, 2024
Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive:... High Unreviewed
CVE-2024-23513 was published Feb 12, 2024
Deserialization of Untrusted Data vulnerability in MagePeople Team Event Manager and Tickets... High Unreviewed
CVE-2024-24796 was published Feb 12, 2024
A vulnerability classified as critical was found in QiboSoft QiboCMS X1 up to 1.0.6. Affected by... High Unreviewed
CVE-2024-1225 was published Feb 5, 2024
A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this... High Unreviewed
CVE-2024-1032 was published Jan 30, 2024
A vulnerability classified as critical was found in van_der_Schaar LAB TemporAI 0.0.3. Affected... High Unreviewed
CVE-2024-0936 was published Jan 26, 2024
Deserialization of Untrusted Data vulnerability in QuantumCloud ChatBot with AI.This issue... High Unreviewed
CVE-2024-22309 was published Jan 24, 2024
Deserialization of Untrusted Data vulnerability in Thomas Belser Asgaros Forum.This issue affects... High Unreviewed
CVE-2024-22284 was published Jan 24, 2024
A vulnerability, which was classified as critical, was found in Hecheng Leadshop up to 1.4.20.... High Unreviewed
CVE-2024-0739 was published Jan 20, 2024
A vulnerability classified as critical has been found in ZhiCms up to 4.0. This affects an... High Unreviewed
CVE-2024-0603 was published Jan 17, 2024
The Formidable Forms WordPress plugin before 6.2 unserializes user input, which could allow... High Unreviewed
CVE-2023-1405 was published Jan 16, 2024
A CWE-502: Deserialization of untrusted data vulnerability exists that could allow an attacker... High Unreviewed
CVE-2023-7032 was published Jan 9, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21318 was published Jan 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database