GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
113,770 advisories
Filter by severity
Out-of-bounds write vulnerability in the HAL-WIFI module
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-47293
was published
Sep 27, 2024
Permission vulnerability in the ActivityManagerService (AMS) module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-47291
was published
Sep 27, 2024
Access permission verification vulnerability in the App Multiplier module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-9136
was published
Sep 27, 2024
Input validation vulnerability in the USB service module
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-47290
was published
Sep 27, 2024
The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-8681
was published
Sep 27, 2024
The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross...
Moderate
Unreviewed
CVE-2024-9049
was published
Sep 27, 2024
Products for macOS enables a user logged on to the system to perform a denial-of-service attack,...
Moderate
Unreviewed
CVE-2024-6654
was published
Sep 27, 2024
Improper Certificate Validation in Checkmk Exchange plugin MikroTik allows attackers in MitM...
Moderate
Unreviewed
CVE-2024-38861
was published
Sep 27, 2024
The OSM – OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-8991
was published
Sep 27, 2024
In drm service, there is a possible out of bounds read due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2024-39434
was published
Sep 27, 2024
In drm service, there is a possible out of bounds write due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2024-39433
was published
Sep 27, 2024
In Logmanager service, there is a possible missing verification incorrect input. This could lead...
Moderate
Unreviewed
CVE-2024-39435
was published
Sep 27, 2024
The Absolute Reviews plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ...
Moderate
Unreviewed
CVE-2024-8965
was published
Sep 27, 2024
A stored Cross-Site Scripting (XSS) vulnerability was identified in Projectworld Online Voting...
Moderate
Unreviewed
CVE-2024-45986
was published
Sep 26, 2024
Improper masking of credentials in Jenkins Pipeline Maven Integration Plugin
Moderate
CVE-2023-41934
was published
for
org.jenkins-ci.plugins:pipeline-maven
(Maven)
Sep 6, 2023
Nomad Search API Leaks Information About CSI Plugins
Moderate
CVE-2023-3300
was published
for
github.com/hashicorp/nomad
(Go)
Jul 20, 2023
Nomad ACL Policies without Label are Applied to Unexpected Resources
Moderate
CVE-2023-3072
was published
for
github.com/hashicorp/nomad
(Go)
Jul 20, 2023
A Cross Site Scripting (XSS) vulnerability in add_donor.php of Blood Bank And Donation Management...
Moderate
Unreviewed
CVE-2024-45984
was published
Sep 26, 2024
A Cross Site Scripting (XSS) vulnerability in update_contact.php of Blood Bank and Donation...
Moderate
Unreviewed
CVE-2024-45985
was published
Sep 26, 2024
The goTenna Pro series use AES CTR mode for short, encrypted messages without any additional...
Moderate
Unreviewed
CVE-2024-47123
was published
Sep 26, 2024
SAP Replication Server allows an attacker to use gateway for executing some commands to RSSD....
Moderate
Unreviewed
CVE-2024-33008
was published
May 14, 2024
SAP Business One (B1i) - version 10.0, allows an authorized attacker to retrieve the details...
Moderate
Unreviewed
CVE-2023-41365
was published
Oct 10, 2023
Multiple Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST...
Moderate
Unreviewed
CVE-2024-47044
was published
Sep 26, 2024
A Cross-Site Request Forgery (CSRF) vulnerability exists in kishan0725's Hospital Management...
Moderate
Unreviewed
CVE-2024-45983
was published
Sep 26, 2024
Assimp v5.4.3 is vulnerable to Buffer Overflow via the MD5Importer::LoadMD5MeshFile function.
Moderate
Unreviewed
CVE-2024-46632
was published
Sep 26, 2024
ProTip!
Advisories are also available from the
GraphQL API