GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,527

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

107,843 advisories

Filter by severity

Sort by

Least recently updated

In Gliffy Online an insecure configuration was discovered in versions before 4.14.0-6 Moderate Unreviewed

CVE-2024-10315 was published Nov 11, 2024

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic... Moderate Unreviewed

CVE-2024-11078 was published Nov 11, 2024

A vulnerability, which was classified as critical, was found in code-projects Job Recruitment 1.0... Moderate Unreviewed

CVE-2024-11077 was published Nov 11, 2024

A vulnerability, which was classified as critical, has been found in code-projects Job... Moderate Unreviewed

CVE-2024-11076 was published Nov 11, 2024

A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0.... Moderate Unreviewed

CVE-2024-11074 was published Nov 11, 2024

A vulnerability classified as problematic has been found in SourceCodester Hospital Management... Moderate Unreviewed

CVE-2024-11073 was published Nov 11, 2024

A flaw was found in moodle. H5P error messages require additional sanitizing to prevent a... Moderate Unreviewed

CVE-2024-43439 was published Nov 11, 2024

IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. This... Moderate Unreviewed

CVE-2024-45087 was published Nov 11, 2024

IBM Maximo Asset Management 7.6.1.3 is vulnerable to stored cross-site scripting. This... Moderate Unreviewed

CVE-2024-45088 was published Nov 11, 2024

A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS 5... Moderate Unreviewed

CVE-2024-11070 was published Nov 11, 2024

A flaw was found in moodle. Insufficient sanitizing of data when performing a restore could... Moderate Unreviewed

CVE-2024-43437 was published Nov 11, 2024

Arbitrary file overwrite during recovery due to improper soft link handling. The following... Moderate Unreviewed

CVE-2024-34014 was published Nov 11, 2024

A flaw was found in moodle. Some hidden user profile fields are visible in gradebook reports,... Moderate Unreviewed

CVE-2024-43429 was published Nov 11, 2024

A flaw was found in moodle. The cURL wrapper in Moodle strips HTTPAUTH and USERPWD headers during... Moderate Unreviewed

CVE-2024-43432 was published Nov 11, 2024

A flaw was found in moodle. Matrix room membership and power levels are incorrectly applied and... Moderate Unreviewed

CVE-2024-43433 was published Nov 11, 2024

A flaw was found in moodle. External API access to Quiz can override contained insufficient... Moderate Unreviewed

CVE-2024-43430 was published Nov 11, 2024

A flaw was found in moodle. Insufficient capability checks make it possible for users with access... Moderate Unreviewed

CVE-2024-43435 was published Nov 11, 2024

Webopac from Grand Vice info has Stored Cross-site Scripting vulnerability. Remote attackers with... Moderate Unreviewed

CVE-2024-11021 was published Nov 11, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-52352 was published Nov 11, 2024

Webopac from Grand Vice info has a Reflected Cross-site Scripting vulnerability, allowing... Moderate Unreviewed

CVE-2024-11019 was published Nov 11, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-52353 was published Nov 11, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-52350 was published Nov 11, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-52351 was published Nov 11, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-52354 was published Nov 11, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-52355 was published Nov 11, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

107,843 advisories