GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,143
Composer 4,083
Erlang 29
GitHub Actions 19
Go 1,909
Maven 5,108
npm 3,644
NuGet 638
pip 3,260
Pub 10
RubyGems 869
Rust 820
Swift 35

Unreviewed advisories

All unreviewed 229,072

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

104,901 advisories

Filter by severity

Sort by

Least recently updated

Dell Unity, versions prior to 5.4, contains SQL Injection vulnerability. An authenticated... Moderate Unreviewed

CVE-2024-22221 was published Feb 12, 2024

Dell Unity, versions prior to 5.4, contains a cross-site scripting (XSS) vulnerability. An... Moderate Unreviewed

CVE-2024-0169 was published Feb 12, 2024

IBM CICS TX Standard and Advanced 11.1 could allow a user with physical access to the web browser... Moderate Unreviewed

CVE-2022-34311 was published Feb 12, 2024

Dell Unity, versions prior to 5.4, contains a Cross-site scripting vulnerability. An... Moderate Unreviewed

CVE-2024-22230 was published Feb 12, 2024

IBM CICS TX Standard and Advanced 11.1 uses weaker than expected cryptographic algorithms that... Moderate Unreviewed

CVE-2022-34310 was published Feb 12, 2024

IBM DataStage on Cloud Pak for Data 4.0.6 to 4.5.2 stores sensitive credential information that... Moderate Unreviewed

CVE-2022-38714 was published Feb 12, 2024

The chartjs WordPress plugin through 2023.2 does not sanitise and escape some of its settings,... Moderate Unreviewed

CVE-2023-6082 was published Feb 12, 2024

A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when... Moderate Unreviewed

CVE-2024-1062 was published Feb 12, 2024

Processing of user-defined DAV user-agent strings is not limited. Availability of OX App Suite... Moderate Unreviewed

CVE-2023-41705 was published Feb 12, 2024

Processing time of drive search expressions now gets monitored, and the related request is... Moderate Unreviewed

CVE-2023-41706 was published Feb 12, 2024

Processing of user-defined mail search expressions is not limited. Availability of OX App Suite... Moderate Unreviewed

CVE-2023-41707 was published Feb 12, 2024

User ID references at mentions in document comments were not correctly sanitized. Script code... Moderate Unreviewed

CVE-2023-41703 was published Feb 12, 2024

References to the "app loader" functionality could contain redirects to unexpected locations.... Moderate Unreviewed

CVE-2023-41708 was published Feb 12, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Yannick Lefebvre Link Library.This issue... Moderate Unreviewed

CVE-2024-24875 was published Feb 12, 2024

Cross-Site Request Forgery (CSRF) vulnerability in ARI Soft Contact Form 7 Connector.This issue... Moderate Unreviewed

CVE-2024-24884 was published Feb 12, 2024

Cross-Site Request Forgery (CSRF) vulnerability in WpSimpleTools Basic Log Viewer.This issue... Moderate Unreviewed

CVE-2024-24935 was published Feb 12, 2024

Deserialization of Untrusted Data vulnerability in Kalli Dan. KD Coming Soon.This issue affects... Moderate Unreviewed

CVE-2023-46615 was published Feb 12, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Ryan Duff, Peter Westwood WP Contact Form.This... Moderate Unreviewed

CVE-2024-24929 was published Feb 12, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Contest Gallery Photos and Files Contest... Moderate Unreviewed

CVE-2024-24887 was published Feb 12, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2023-50875 was published Feb 12, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2023-47526 was published Feb 12, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2023-51403 was published Feb 12, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-24889 was published Feb 12, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2023-51370 was published Feb 12, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-24928 was published Feb 12, 2024

Previous 1 2 … 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

104,901 advisories