GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
10,421 advisories
Filter by severity
A vulnerability exists in the Rockwell Automation FactoryTalk® View SE Datalog function that...
Unknown
Unreviewed
CVE-2024-4609
was published
May 16, 2024
A Local File Inclusion (LFI) vulnerability exists in the gaizhenbiao/chuanhuchatgpt application,...
High
Unreviewed
CVE-2024-4321
was published
May 16, 2024
Laravel Guard bypass in Eloquent models
Moderate
GHSA-44pg-c29v-hp6r
was published
for
laravel/framework
(Composer)
May 15, 2024
Laravel Risk of mass-assignment vulnerabilities
Moderate
GHSA-rj3w-99gc-8j58
was published
for
laravel/framework
(Composer)
May 15, 2024
Laravel Risk of mass-assignment vulnerabilities
Moderate
GHSA-cc2w-ghc5-m5qr
was published
for
illuminate/database
(Composer)
May 15, 2024
Drupal Core Insufficient Contextual Links validation leads to Remote Code Execution
Critical
GHSA-jjx7-8462-w4m4
was published
for
drupal/drupal
(Composer)
May 15, 2024
A vulnerability in Cisco AppDynamics Network Visibility Agent could allow an unauthenticated,...
Moderate
Unreviewed
CVE-2024-20394
was published
May 15, 2024
File Upload vulnerability in unauthenticated
session found in OpenText™ iManager 3.2.6.0200. The...
Moderate
Unreviewed
CVE-2024-3488
was published
May 15, 2024
Remote Code
Execution has been discovered in
OpenText™ iManager 3.2.6.0200. The vulnerability can...
High
Unreviewed
CVE-2024-3968
was published
May 15, 2024
A Header Injection vulnerability in the JFrog platform in versions below 7.85.0 (SaaS) and 7.84.7...
Moderate
Unreviewed
CVE-2024-2248
was published
May 15, 2024
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Input...
High
Unreviewed
CVE-2024-34098
was published
May 15, 2024
Grafana Email addresses and usernames can not be trusted
Moderate
CVE-2022-39306
was published
for
github.com/grafana/grafana
(Go)
May 14, 2024
Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an...
Unknown
Unreviewed
CVE-2024-3044
was published
May 14, 2024
The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains an Improper Input...
High
Unreviewed
CVE-2024-3676
was published
May 14, 2024
Microsoft Power BI Client JavaScript SDK Information Disclosure Vulnerability
Moderate
CVE-2024-30054
was published
for
Microsoft.PowerBI.JavaScript
(NuGet)
May 14, 2024
Windows MSHTML Platform Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2024-30040
was published
May 14, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-29998
was published
May 14, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-30002
was published
May 14, 2024
Improper validation of certain metadata input may result in the server not correctly serialising...
High
Unreviewed
CVE-2024-3372
was published
May 14, 2024
Dell PowerScale OneFS versions 8.2.x through 9.7.0.1 contains an improper input validation...
Moderate
Unreviewed
CVE-2024-25970
was published
May 14, 2024
Apache Karaf Cave: Cave SSRF and arbitrary file access
Critical
CVE-2024-34365
was published
for
org.apache.karaf:cave
(Maven)
May 14, 2024
Insufficient verification vulnerability in the baseband module
Impact: Successful exploitation of...
High
Unreviewed
CVE-2024-32992
was published
May 14, 2024
Permission verification vulnerability in the system sharing pop-up module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-32990
was published
May 14, 2024
ProTip!
Advisories are also available from the
GraphQL API