GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
104,901 advisories
Filter by severity
Dell Unity, versions prior to 5.4, contains SQL Injection vulnerability. An authenticated...
Moderate
Unreviewed
CVE-2024-22221
was published
Feb 12, 2024
Dell Unity, versions prior to 5.4, contains a cross-site scripting (XSS) vulnerability. An...
Moderate
Unreviewed
CVE-2024-0169
was published
Feb 12, 2024
IBM CICS TX Standard and Advanced 11.1 could allow a user with physical access to the web browser...
Moderate
Unreviewed
CVE-2022-34311
was published
Feb 12, 2024
Dell Unity, versions prior to 5.4, contains a Cross-site scripting vulnerability. An...
Moderate
Unreviewed
CVE-2024-22230
was published
Feb 12, 2024
IBM CICS TX Standard and Advanced 11.1 uses weaker than expected cryptographic algorithms that...
Moderate
Unreviewed
CVE-2022-34310
was published
Feb 12, 2024
IBM DataStage on Cloud Pak for Data 4.0.6 to 4.5.2 stores sensitive credential information that...
Moderate
Unreviewed
CVE-2022-38714
was published
Feb 12, 2024
The chartjs WordPress plugin through 2023.2 does not sanitise and escape some of its settings,...
Moderate
Unreviewed
CVE-2023-6082
was published
Feb 12, 2024
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when...
Moderate
Unreviewed
CVE-2024-1062
was published
Feb 12, 2024
Processing of user-defined DAV user-agent strings is not limited. Availability of OX App Suite...
Moderate
Unreviewed
CVE-2023-41705
was published
Feb 12, 2024
Processing time of drive search expressions now gets monitored, and the related request is...
Moderate
Unreviewed
CVE-2023-41706
was published
Feb 12, 2024
Processing of user-defined mail search expressions is not limited. Availability of OX App Suite...
Moderate
Unreviewed
CVE-2023-41707
was published
Feb 12, 2024
User ID references at mentions in document comments were not correctly sanitized. Script code...
Moderate
Unreviewed
CVE-2023-41703
was published
Feb 12, 2024
References to the "app loader" functionality could contain redirects to unexpected locations....
Moderate
Unreviewed
CVE-2023-41708
was published
Feb 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Yannick Lefebvre Link Library.This issue...
Moderate
Unreviewed
CVE-2024-24875
was published
Feb 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in ARI Soft Contact Form 7 Connector.This issue...
Moderate
Unreviewed
CVE-2024-24884
was published
Feb 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WpSimpleTools Basic Log Viewer.This issue...
Moderate
Unreviewed
CVE-2024-24935
was published
Feb 12, 2024
Deserialization of Untrusted Data vulnerability in Kalli Dan. KD Coming Soon.This issue affects...
Moderate
Unreviewed
CVE-2023-46615
was published
Feb 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Ryan Duff, Peter Westwood WP Contact Form.This...
Moderate
Unreviewed
CVE-2024-24929
was published
Feb 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Contest Gallery Photos and Files Contest...
Moderate
Unreviewed
CVE-2024-24887
was published
Feb 12, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2023-50875
was published
Feb 12, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2023-47526
was published
Feb 12, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2023-51403
was published
Feb 12, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-24889
was published
Feb 12, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2023-51370
was published
Feb 12, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-24928
was published
Feb 12, 2024
ProTip!
Advisories are also available from the
GraphQL API