GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
86,720 advisories
Filter by severity
A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and...
High
Unreviewed
CVE-2024-6373
was published
Jun 27, 2024
A vulnerability, which was classified as critical, has been found in itsourcecode Pool of...
High
Unreviewed
CVE-2024-6371
was published
Jun 27, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Talya Informatics Travel APPS...
High
Unreviewed
CVE-2024-1107
was published
Jun 27, 2024
The Auto Featured Image plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-6054
was published
Jun 27, 2024
Improper authorization in global search in GitLab EE affecting all versions from 16.11 prior to...
High
Unreviewed
CVE-2024-6323
was published
Jun 27, 2024
Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.1.0.0 and 9.3.0.7,...
High
Unreviewed
CVE-2024-28983
was published
Jun 27, 2024
Hitachi Vantara Pentaho Business Analytics Server versions before 10.1.0.0 and 9.3.0.7, including...
High
Unreviewed
CVE-2024-28982
was published
Jun 27, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to 16.11...
High
Unreviewed
CVE-2024-4901
was published
Jun 27, 2024
Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.1.0.0 and 9.3.0.7,...
High
Unreviewed
CVE-2024-28984
was published
Jun 27, 2024
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain an...
High
Unreviewed
CVE-2024-37140
was published
Jun 26, 2024
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a...
High
Unreviewed
CVE-2024-29176
was published
Jun 26, 2024
A vulnerability in the default configuration of the Simple Network
Management Protocol (SNMP)...
High
Unreviewed
CVE-2024-5460
was published
Jun 26, 2024
The WP Cookie Consent ( for GDPR, CCPA & ePrivacy ) plugin for WordPress is vulnerable to Stored...
High
Unreviewed
CVE-2024-4869
was published
Jun 26, 2024
In WhatsUp Gold versions released before 2023.1.3, there is a missing authentication...
High
Unreviewed
CVE-2024-5012
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Denial of Service
...
High
Unreviewed
CVE-2024-5013
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, a Server Side Request Forgery vulnerability...
High
Unreviewed
CVE-2024-5014
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, Distributed Edition installations can be...
High
Unreviewed
CVE-2024-5016
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an authenticated SSRF vulnerability in Wug.UI...
High
Unreviewed
CVE-2024-5015
was published
Jun 25, 2024
A Path Traversal and Remote File Inclusion (RFI) vulnerability exists in the parisneo/lollms...
High
Unreviewed
CVE-2024-4498
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3,
an authenticated user with certain...
High
Unreviewed
CVE-2024-5008
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an Improper Access Control vulnerability in...
High
Unreviewed
CVE-2024-5009
was published
Jun 25, 2024
A security vulnerability has been identified in HPE Athonet Mobile Core software. The core...
High
Unreviewed
CVE-2024-6206
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an uncontrolled resource consumption...
High
Unreviewed
CVE-2024-5011
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, a vulnerability exists in the TestController...
High
Unreviewed
CVE-2024-5010
was published
Jun 25, 2024
A vulnerability was found in itsourcecode Simple Online Hotel Reservation System 1.0. It has been...
High
Unreviewed
CVE-2024-6308
was published
Jun 25, 2024
ProTip!
Advisories are also available from the
GraphQL API