GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
87 advisories
Filter by severity
lilishop <=4.2.4 is vulnerable to Incorrect Access Control, which can allow attackers to obtain...
High
Unreviewed
CVE-2024-50654
was published
Nov 15, 2024
Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control...
High
Unreviewed
CVE-2024-10534
was published
Nov 15, 2024
A CORS misconfiguration in parisneo/lollms-webui prior to version 10 allows attackers to steal...
High
Unreviewed
CVE-2024-6674
was published
Oct 29, 2024
Incorrect access control in Mirotalk before commit 9de226 allows attackers to arbitrarily change...
High
Unreviewed
CVE-2024-44734
was published
Oct 11, 2024
Gradios's CORS origin validation is not performed when the request has a cookie
High
CVE-2024-47084
was published
for
gradio
(pip)
Oct 10, 2024
An attacker could, via a specially crafted multipart response, execute arbitrary JavaScript under...
High
Unreviewed
CVE-2024-9393
was published
Oct 1, 2024
While copying individual autoupdater log files, reparse point check was missing which could...
High
Unreviewed
CVE-2024-23458
was published
Aug 6, 2024
Flowise Cors Misconfiguration in packages/server/src/index.ts
High
CVE-2024-36421
was published
for
flowise
(npm)
Aug 5, 2024
Origin validation error vulnerability exists in SKYSEA Client View Ver.3.013.00 to Ver.19.210.04e...
High
Unreviewed
CVE-2024-41143
was published
Jul 29, 2024
Origin Validation Error in GitHub repository stitionai/devika prior to -.
High
Unreviewed
CVE-2024-5549
was published
Jul 9, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2024-36303
was published
Jun 11, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2024-36302
was published
Jun 11, 2024
An origin validation vulnerability exists in
BIG-IP APM browser network access VPN client
...
High
Unreviewed
CVE-2024-28883
was published
May 8, 2024
A vulnerability exists in the too permissive HTTP response header web server settings of the...
High
Unreviewed
CVE-2024-2377
was published
Apr 30, 2024
Keycloak's unvalidated cross-origin messages in checkLoginIframe leads to DDoS
High
CVE-2024-1249
was published
for
org.keycloak:keycloak-services
(Maven)
Apr 17, 2024
Keycloak path traversal vulnerability in the redirect validation
High
CVE-2024-2419
was published
for
org.keycloak:keycloak-services
(Maven)
Apr 17, 2024
MeshCentral cross-site websocket hijacking (CSWSH) vulnerability
High
CVE-2024-26135
was published
for
meshcentral
(npm)
Feb 21, 2024
A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker...
High
Unreviewed
CVE-2023-40547
was published
Jan 25, 2024
Cross-site WebSocket hijacking vulnerability in the Jenkins CLI
High
CVE-2024-23898
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
Jan 24, 2024
A plug-in manager origin validation vulnerability in the Trend Micro Apex One security agent...
High
Unreviewed
CVE-2023-47200
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47199
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47194
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47197
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47196
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47193
was published
Jan 23, 2024
ProTip!
Advisories are also available from the
GraphQL API