Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+

640 advisories

Loading
CWE-502: Deserialization of Untrusted Data vulnerability exists that could cause remote code... High Unreviewed
CVE-2024-2229 was published Mar 18, 2024
The SolarWinds Security Event Manager was susceptible to Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-0692 was published Mar 1, 2024
Reading specially crafted serializable objects from an untrusted source may cause an infinite loop and denial of service High
CVE-2024-22871 was published for org.clojure:clojure (Maven) Feb 29, 2024
puredanger
Deserialization of Untrusted Data in Apache Camel SQL High
CVE-2024-22369 was published for org.apache.camel:camel-sql (Maven) Feb 20, 2024
oscerd
Deserialization of Untrusted Data in Apache Camel CassandraQL High
CVE-2024-23114 was published for org.apache.camel:camel-cassandraql (Maven) Feb 20, 2024
oscerd
SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Remote Code Execution... High Unreviewed
CVE-2024-23478 was published Feb 15, 2024
Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder &... High Unreviewed
CVE-2024-23512 was published Feb 12, 2024
Deserialization of Untrusted Data vulnerability in UnitedThemes Brooklyn | Creative Multi-Purpose... High Unreviewed
CVE-2024-24926 was published Feb 12, 2024
Deserialization of Untrusted Data vulnerability in MagePeople Team Event Manager and Tickets... High Unreviewed
CVE-2024-24796 was published Feb 12, 2024
Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive:... High Unreviewed
CVE-2024-23513 was published Feb 12, 2024
Allegro AI ClearML vulnerable to deserialization of untrusted data High
CVE-2024-24590 was published for clearml (pip) Feb 6, 2024
A vulnerability classified as critical was found in QiboSoft QiboCMS X1 up to 1.0.6. Affected by... High Unreviewed
CVE-2024-1225 was published Feb 5, 2024
A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this... High Unreviewed
CVE-2024-1032 was published Jan 30, 2024
A vulnerability classified as critical was found in van_der_Schaar LAB TemporAI 0.0.3. Affected... High Unreviewed
CVE-2024-0936 was published Jan 26, 2024
Apache Airflow: pickle deserialization vulnerability in XComs High
CVE-2023-50943 was published for apache-airflow (pip) Jan 24, 2024
Deserialization of Untrusted Data vulnerability in QuantumCloud ChatBot with AI.This issue... High Unreviewed
CVE-2024-22309 was published Jan 24, 2024
Deserialization of Untrusted Data vulnerability in Thomas Belser Asgaros Forum.This issue affects... High Unreviewed
CVE-2024-22284 was published Jan 24, 2024
A vulnerability, which was classified as critical, was found in Hecheng Leadshop up to 1.4.20.... High Unreviewed
CVE-2024-0739 was published Jan 20, 2024
A vulnerability classified as critical has been found in ZhiCms up to 4.0. This affects an... High Unreviewed
CVE-2024-0603 was published Jan 17, 2024
The Formidable Forms WordPress plugin before 6.2 unserializes user input, which could allow... High Unreviewed
CVE-2023-1405 was published Jan 16, 2024
A CWE-502: Deserialization of untrusted data vulnerability exists that could allow an attacker... High Unreviewed
CVE-2023-7032 was published Jan 9, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21318 was published Jan 9, 2024
Deserialization of Untrusted Data vulnerability in Live Composer Team Page Builder: Live Composer... High Unreviewed
CVE-2023-52206 was published Jan 8, 2024
The Ovic Responsive WPBakery WordPress plugin before 1.2.9 does not limit which options can be... High Unreviewed
CVE-2023-5235 was published Jan 8, 2024
The Slider Revolution WordPress plugin before 6.6.19 does not prevent users with at least the... High Unreviewed
CVE-2023-6528 was published Jan 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database