Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

10,421 advisories

Loading
TYPO3 Arbitrary Shell Execution in Swiftmailer library High
GHSA-45xg-4w5x-j429 was published for typo3/cms (Composer) May 30, 2024
Symfony has unsafe methods in the Request class Moderate
CVE-2015-2309 was published for symfony/http-foundation (Composer) May 30, 2024
Symfony has a security issue when parsing the Authorization header Moderate
CVE-2014-6061 was published for symfony/http-foundation (Composer) May 30, 2024
silverstripe/framework has possible denial of service attack vector when flushing High
GHSA-cwgq-83w5-8jfq was published for silverstripe/framework (Composer) May 28, 2024
silverstripe/framework uploaded PHP script execution in assets Moderate
GHSA-f43j-8hq4-2xj9 was published for silverstripe/framework (Composer) May 27, 2024
In mintplex-labs/anything-llm, a vulnerability exists due to improper input validation in the... High Unreviewed
CVE-2024-4287 was published May 20, 2024
A potential vulnerability has been identified for OpenText Operations Bridge Reporter. The... High Unreviewed
CVE-2021-22508 was published May 17, 2024
Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious... High Unreviewed
CVE-2024-22429 was published May 17, 2024
Zabbix server can perform command execution for configured scripts. After command is executed,... Critical Unreviewed
CVE-2024-22120 was published May 17, 2024
Improper input validation for some Intel(R) DLB driver software before version 8.5.0 may allow an... Moderate Unreviewed
CVE-2024-22015 was published May 16, 2024
Improper input validation in PfrSmiUpdateFw driver in UEFI firmware for some Intel(R) Server... High Unreviewed
CVE-2024-24981 was published May 16, 2024
Improper input validation in PlatformVariableInitDxe driver in UEFI firmware for some Intel(R)... High Unreviewed
CVE-2024-22095 was published May 16, 2024
Improper input validation in PprRequestLog module in UEFI firmware for some Intel(R) Server... High Unreviewed
CVE-2024-22382 was published May 16, 2024
Improper input validation in some Intel(R) Neural Compressor software before version 2.5.0 may... Critical Unreviewed
CVE-2024-22476 was published May 16, 2024
Improper input validation in UserAuthenticationSmm driver in UEFI firmware for some Intel(R)... High Unreviewed
CVE-2024-23487 was published May 16, 2024
Improper input validation in firmware for some Intel(R) FPGA products before version 2.9.1 may... Moderate Unreviewed
CVE-2024-22390 was published May 16, 2024
Improper input validation in Intel(R) Media SDK software all versions may allow an authenticated... Moderate Unreviewed
CVE-2023-48368 was published May 16, 2024
Improper input validation for some Intel(R) PROSet/Wireless WiFi software for linux before... Moderate Unreviewed
CVE-2023-47210 was published May 16, 2024
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may... Moderate Unreviewed
CVE-2023-47855 was published May 16, 2024
Improper input validation in some Intel(R) CBI software before version 1.1.0 may allow an... Low Unreviewed
CVE-2023-43745 was published May 16, 2024
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may... High Unreviewed
CVE-2023-45745 was published May 16, 2024
Improper input validation for some some Intel(R) PROSet/Wireless WiFi software for Windows before... High Unreviewed
CVE-2023-38654 was published May 16, 2024
Improper input validation of EpsdSrMgmtConfig in UEFI firmware for some Intel(R) Server Board... Moderate Unreviewed
CVE-2023-22662 was published May 16, 2024
Improper input validation in some Intel(R) BIOS Guard firmware may allow a privileged user to... High Unreviewed
CVE-2023-28402 was published May 16, 2024
Improper input validation for some Intel(R) PROSet/Wireless WiFi software before version 23.20... Moderate Unreviewed
CVE-2023-38417 was published May 16, 2024
ProTip! Advisories are also available from the GraphQL API