GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,733
Composer 4,238
Erlang 31
GitHub Actions 21
Go 2,005
Maven 5,193
npm 3,716
NuGet 661
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,720

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

109,122 advisories

Filter by severity

Sort by

Least recently updated

The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress... Moderate Unreviewed

CVE-2024-11219 was published Nov 27, 2024

The ProfilePress plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2024-11083 was published Nov 27, 2024

A vulnerability, which was classified as problematic, has been found in code-projects Crud... Moderate Unreviewed

CVE-2024-11820 was published Nov 27, 2024

A Directory Browsing vulnerability in MCL-Net version 4.3.5.8788 webserver running on default... Moderate Unreviewed

CVE-2023-34834 was published Jun 29, 2023

In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: avoid... Moderate Unreviewed

CVE-2024-50270 was published Nov 19, 2024

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Be stricter... Moderate Unreviewed

CVE-2024-53071 was published Nov 19, 2024

A vulnerability was found in PHPGurukul User Registration & Login and User Management System 1.0.... Moderate Unreviewed

CVE-2024-11817 was published Nov 27, 2024

A vulnerability classified as critical has been found in PHPGurukul User Registration & Login and... Moderate Unreviewed

CVE-2024-11818 was published Nov 27, 2024

A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA... Moderate Unreviewed

CVE-2024-11819 was published Nov 27, 2024

An out-of-bounds write flaw was found in mpg123 when handling crafted streams. When decoding PCM,... Moderate Unreviewed

CVE-2024-10573 was published Oct 31, 2024

Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext. This... Moderate Unreviewed

CVE-2024-11159 was published Nov 13, 2024

A log spoofing flaw was found in the Tuned package due to improper sanitization of some API... Moderate Unreviewed

CVE-2024-52337 was published Nov 26, 2024

The virtio_vq_recordon function is subject to a time-of-check to time-of-use (TOCTOU) race... Moderate Unreviewed

CVE-2024-51563 was published Nov 12, 2024

An uninitialized pointer dereference in the NasPdu::NasPdu component of OpenAirInterface CN5G AMF... Moderate Unreviewed

CVE-2024-24449 was published Nov 15, 2024

Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to... Moderate Unreviewed

CVE-2023-31355 was published Aug 5, 2024

A vulnerability was found in DataGear up to 4.60. It has been declared as critical. This... Moderate Unreviewed

CVE-2023-7299 was published Nov 23, 2024

A stored cross-site scripting (XSS) vulnerability was identified in PHPGURUKUL Vehicle Parking... Moderate Unreviewed

CVE-2024-53365 was published Nov 26, 2024

The NVMe driver queue processing is vulernable to guest-induced infinite loops. Moderate Unreviewed

CVE-2024-51566 was published Nov 12, 2024

The hda driver is vulnerable to a buffer over-read from a guest-controlled value. Moderate Unreviewed

CVE-2024-51565 was published Nov 12, 2024

The NVMe driver function nvme_opc_get_log_page is vulnerable to a buffer over-read from a guest... Moderate Unreviewed

CVE-2024-51562 was published Nov 12, 2024

baltic-it TOPqw Webportal v1.35.283.2 is vulnerable to Incorrect Access Control in the User... Moderate Unreviewed

CVE-2024-45877 was published Nov 13, 2024

In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend... Moderate Unreviewed

CVE-2023-29147 was published Jun 30, 2023

The command ctl_persistent_reserve_out allows the caller to specify an arbitrary size which will... Moderate Unreviewed

CVE-2024-39281 was published Nov 12, 2024

A vulnerability has been found in 1000 Projects Portfolio Management System MCA 1.0 and... Moderate Unreviewed

CVE-2024-11744 was published Nov 26, 2024

An issue has been discovered in GitLab CE/EE affecting all versions from 16.11 before 17.4.5, 17... Moderate Unreviewed

CVE-2024-11668 was published Nov 26, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

109,122 advisories