Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

479 advisories

Loading
Server-Side Request Forgery vulnerability in Haivision's Aviwest Manager and Aviwest Steamhub.... Moderate Unreviewed
CVE-2024-1965 was published Feb 28, 2024
Server-Side Request Forgery (SSRF) vulnerability in Raaj Trambadia Pexels: Free Stock Photos.This... Moderate Unreviewed
CVE-2024-25915 was published Feb 23, 2024
Possible CSRF attack at questionnaire templates preview Moderate
CVE-2023-47635 was published for decidim-templates (RubyGems) Feb 20, 2024
Server-Side Request Forgery in github.com/greenpau/caddy-security Moderate
CVE-2024-21498 was published for github.com/greenpau/caddy-security (Go) Feb 17, 2024
Grafana is an open-source platform for monitoring and observability. The CSV datasource plugin is... Moderate Unreviewed
CVE-2023-5122 was published Feb 14, 2024
Suite CRM version 7.14.2 allows making arbitrary HTTP requests through the vulnerable server.... Moderate Unreviewed
CVE-2023-6388 was published Feb 7, 2024
Server-side request forgery (SSRF) vulnerability that could allow a rogue server on the local... Moderate Unreviewed
CVE-2023-22817 was published Feb 6, 2024
Label Studio SSRF on Import Bypassing `SSRF_PROTECTION_ENABLED` Protections Moderate
CVE-2023-47116 was published for label-studio (pip) Jan 31, 2024
alex-elttam isacaya
Appwrite <= v1.4.13 is affected by a Server-Side Request Forgery (SSRF) via the '/v1/avatars... Moderate Unreviewed
CVE-2024-1063 was published Jan 30, 2024
A Blind SSRF vulnerability exists in the "Crawl Meta Data" functionality of SEO Panel version 4... Moderate Unreviewed
CVE-2024-22648 was published Jan 30, 2024
A vulnerability, which was classified as critical, has been found in Rebuild up to 3.5.5.... Moderate Unreviewed
CVE-2024-1021 was published Jan 30, 2024
Server-Side Request Forgery (SSRF) vulnerability in Renzo Johnson Contact Form 7 Extension For... Moderate Unreviewed
CVE-2024-22134 was published Jan 24, 2024
A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central... Moderate Unreviewed
CVE-2023-38626 was published Jan 23, 2024
A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central... Moderate Unreviewed
CVE-2023-38624 was published Jan 23, 2024
A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central... Moderate Unreviewed
CVE-2023-38625 was published Jan 23, 2024
A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central... Moderate Unreviewed
CVE-2023-38627 was published Jan 23, 2024
IBM Maximo Spatial Asset Management 8.10 is vulnerable to server-side request forgery (SSRF).... Moderate Unreviewed
CVE-2023-32337 was published Jan 19, 2024
A vulnerability was found in ZhiHuiYun up to 4.4.13 and classified as critical. This issue... Moderate Unreviewed
CVE-2024-0649 was published Jan 18, 2024
A vulnerability was found in ZhongFuCheng3y Austin 1.0. It has been rated as critical. Affected... Moderate Unreviewed
CVE-2024-0601 was published Jan 17, 2024
A vulnerability was found in Inis up to 2.0.1. It has been rated as critical. This issue affects... Moderate Unreviewed
CVE-2024-0308 was published Jan 8, 2024
A vulnerability has been found in Youke365 up to 1.5.3 and classified as critical. Affected by... Moderate Unreviewed
CVE-2024-0304 was published Jan 8, 2024
A vulnerability, which was classified as critical, was found in Youke365 up to 1.5.3. Affected is... Moderate Unreviewed
CVE-2024-0303 was published Jan 8, 2024
Server-Side Request Forgery (SSRF) vulnerability in Leevio Happy Addons for Elementor.This issue... Moderate Unreviewed
CVE-2023-51676 was published Dec 29, 2023
Server-Side Request Forgery (SSRF) vulnerability in GiveWP GiveWP – Donation Plugin and... Moderate Unreviewed
CVE-2022-40312 was published Dec 18, 2023
A vulnerability classified as critical was found in kalcaddle KodExplorer up to 4.51.03. Affected... Moderate Unreviewed
CVE-2023-6853 was published Dec 16, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database