GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,871

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

843 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability was found in wanglongcn ltcms 1.0.20. It has been classified as critical.... Moderate Unreviewed

CVE-2024-7742 was published Aug 13, 2024

A vulnerability was found in wanglongcn ltcms 1.0.20. It has been declared as critical. Affected... Moderate Unreviewed

CVE-2024-7743 was published Aug 13, 2024

An authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in... Critical Unreviewed

CVE-2024-38109 was published Aug 13, 2024

SAP CRM ABAP (Insights Management) allows an authenticated attacker to enumerate HTTP endpoints... Moderate Unreviewed

CVE-2024-41737 was published Aug 13, 2024

An issue in Prestashop v.8.1.7 and before allows a remote attacker to execute arbitrary code via... Critical Unreviewed

CVE-2024-41651 was published Aug 12, 2024

An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7... Critical Unreviewed

CVE-2024-41570 was published Aug 12, 2024

The Modern Events Calendar plugin for WordPress is vulnerable to Server-Side Request Forgery in... High Unreviewed

CVE-2024-6522 was published Aug 7, 2024

An authenticated attacker can bypass Server-Side Request Forgery (SSRF) protection in Microsoft... High Unreviewed

CVE-2024-38206 was published Aug 7, 2024

** UNSUPPORTED WHEN ASSIGNED ** Server-Side Request Forgery (SSRF) vulnerability in Apache IoTDB... High Unreviewed

CVE-2024-36448 was published Aug 5, 2024

Server Side Request Forgery (SSRF) vulnerability in Pixelcurve Edubin edubin.This issue affects... Moderate Unreviewed

CVE-2024-39637 was published Aug 2, 2024

Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot allows... Moderate Unreviewed

CVE-2024-38791 was published Aug 1, 2024

The Remote Content Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in... Moderate Unreviewed

CVE-2024-2090 was published Aug 1, 2024

A vulnerability has been found in YouDianCMS 7 and classified as critical. Affected by this... Moderate Unreviewed

CVE-2024-7330 was published Aug 1, 2024

A Server-Side Request Forgery (SSRF) in the Plugins Page of WonderCMS v3.4.3 allows attackers to... High Unreviewed

CVE-2024-41305 was published Jul 30, 2024

Automation Anywhere Automation 360 v21-v32 is vulnerable to Server-Side Request Forgery in a web... Moderate Unreviewed

CVE-2024-6922 was published Jul 26, 2024

Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor.This... Moderate Unreviewed

CVE-2024-38730 was published Jul 22, 2024

Server-Side Request Forgery (SSRF) vulnerability in Berqier Ltd BerqWP.This issue affects BerqWP:... High Unreviewed

CVE-2024-37942 was published Jul 22, 2024

Server-Side Request Forgery (SSRF) vulnerability in Seraphinite Solutions Seraphinite Post .DOCX... High Unreviewed

CVE-2024-38728 was published Jul 22, 2024

Server-Side Request Forgery (SSRF) vulnerability in Bernhard Kux JSON Content Importer.This issue... Moderate Unreviewed

CVE-2024-38723 was published Jul 22, 2024

Server-Side Request Forgery (SSRF) vulnerability in WappPress Team WappPress.This issue affects... Moderate Unreviewed

CVE-2024-38758 was published Jul 20, 2024

The server responded with an HTTP status of 500, indicating a server-side error that may cause... Moderate Unreviewed

CVE-2024-30125 was published Jul 18, 2024

SSRF in Apache HTTP Server on Windows with mod_rewrite in server/vhost context, allows to... Critical Unreviewed

CVE-2024-40898 was published Jul 18, 2024

There is an SSRF vulnerability in the Fluid Topics platform that affects versions prior to 4.3,... Moderate Unreviewed

CVE-2023-31456 was published Jul 16, 2024

The vulnerability allows a malicious low-privileged PAM user to perform server upgrade related... Moderate Unreviewed

CVE-2024-36458 was published Jul 15, 2024

IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 is vulnerable to server-side request... Moderate Unreviewed

CVE-2024-39739 was published Jul 15, 2024

Previous 1 2 3 4 5 … 33 34 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

843 advisories