Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

843 advisories

Loading
An issue was discovered in Logpoint before 7.4.0. Due to a lack of input validation on URLs in... Critical Unreviewed
CVE-2024-33857 was published May 7, 2024
TwoNav 2.1.13 contains an SSRF vulnerability via the url paramater to index.php?c=api&method... Moderate Unreviewed
CVE-2024-34453 was published May 3, 2024
An issue was discovered in Teledyne FLIR M300 2.00-19. Unauthenticated remote code execution can... Critical Unreviewed
CVE-2023-46295 was published May 1, 2024
OneNav v0.9.35-20240318 was discovered to contain a Server-Side Request Forgery (SSRF) via the... Moderate Unreviewed
CVE-2024-33832 was published Apr 30, 2024
Server-Side Request Forgery (SSRF) vulnerability in codeSavory Knowledge Base documentation &... Moderate Unreviewed
CVE-2024-33590 was published Apr 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in Piotnet Piotnet Addons For Elementor Pro.This... Moderate Unreviewed
CVE-2024-33634 was published Apr 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in Cusmin Absolutely Glamorous Custom Admin.This... Moderate Unreviewed
CVE-2024-33627 was published Apr 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in Creative Motion Auto Featured Image (Auto... Moderate Unreviewed
CVE-2024-33629 was published Apr 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in SoftLab Radio Player.This issue affects Radio... Moderate Unreviewed
CVE-2024-33592 was published Apr 25, 2024
Server-Side Request Forgery (SSRF) vulnerability in 2day.Sk, Webikon SuperFaktura WooCommerce... Moderate Unreviewed
CVE-2024-32803 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Podlove Podlove Podcast Publisher.This issue... Moderate Unreviewed
CVE-2024-32812 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Webangon The Pack Elementor.This issue... Moderate Unreviewed
CVE-2024-32718 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Foliovision FV Flowplayer Video Player.This... Moderate Unreviewed
CVE-2024-32955 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Pavex Embed Google Photos album.This issue... Moderate Unreviewed
CVE-2024-32775 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Culqi.This issue affects Culqi: from n/a... Moderate Unreviewed
CVE-2024-32819 was published Apr 24, 2024
An issue in inducer relate before v.2024.1 allows a remote attacker to execute arbitrary code via... High Unreviewed
CVE-2024-32407 was published Apr 22, 2024
A server-side request forgery (SSRF) was discovered in the Akana Community Manager Developer... Critical Unreviewed
CVE-2024-2796 was published Apr 18, 2024
Server-Side Request Forgery (SSRF) vulnerability in Really Simple Plugins Really Simple SSL.This... Moderate Unreviewed
CVE-2024-31229 was published Apr 18, 2024
IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3... Moderate Unreviewed
CVE-2024-22329 was published Apr 17, 2024
Server-Side Request Forgery (SSRF) vulnerability in Wappointment Appointment Bookings for Zoom... Moderate Unreviewed
CVE-2024-32454 was published Apr 15, 2024
Server-Side Request Forgery (SSRF) vulnerability in ActiveCampaign.This issue affects... Moderate Unreviewed
CVE-2024-32430 was published Apr 15, 2024
Users with low privileges can perform certain AJAX actions. In this vulnerability instance,... Moderate Unreviewed
CVE-2024-3448 was published Apr 10, 2024
Server-side request forgery (SSRF) in PingFederate allows unauthenticated http requests to attack... Moderate Unreviewed
CVE-2023-40148 was published Apr 10, 2024
SAP NetWeaver application, due to insufficient input validation, allows an attacker to send a... Moderate Unreviewed
CVE-2024-27898 was published Apr 9, 2024
Server-Side Request Forgery (SSRF) vulnerability in RapidLoad RapidLoad Power-Up for Autoptimize... High Unreviewed
CVE-2024-31288 was published Apr 7, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database