Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

113,770 advisories

Loading
Out-of-bounds write vulnerability in the HAL-WIFI module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-47293 was published Sep 27, 2024
Permission vulnerability in the ActivityManagerService (AMS) module Impact: Successful... Moderate Unreviewed
CVE-2024-47291 was published Sep 27, 2024
Access permission verification vulnerability in the App Multiplier module Impact: Successful... Moderate Unreviewed
CVE-2024-9136 was published Sep 27, 2024
Input validation vulnerability in the USB service module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-47290 was published Sep 27, 2024
The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-8681 was published Sep 27, 2024
The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed
CVE-2024-9049 was published Sep 27, 2024
Products for macOS enables a user logged on to the system to perform a denial-of-service attack,... Moderate Unreviewed
CVE-2024-6654 was published Sep 27, 2024
Improper Certificate Validation in Checkmk Exchange plugin MikroTik allows attackers in MitM... Moderate Unreviewed
CVE-2024-38861 was published Sep 27, 2024
The OSM – OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-8991 was published Sep 27, 2024
In drm service, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2024-39434 was published Sep 27, 2024
In drm service, there is a possible out of bounds write due to a missing bounds check. This could... Moderate Unreviewed
CVE-2024-39433 was published Sep 27, 2024
In Logmanager service, there is a possible missing verification incorrect input. This could lead... Moderate Unreviewed
CVE-2024-39435 was published Sep 27, 2024
The Absolute Reviews plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2024-8965 was published Sep 27, 2024
A stored Cross-Site Scripting (XSS) vulnerability was identified in Projectworld Online Voting... Moderate Unreviewed
CVE-2024-45986 was published Sep 26, 2024
Improper masking of credentials in Jenkins Pipeline Maven Integration Plugin Moderate
CVE-2023-41934 was published for org.jenkins-ci.plugins:pipeline-maven (Maven) Sep 6, 2023
Nomad Search API Leaks Information About CSI Plugins Moderate
CVE-2023-3300 was published for github.com/hashicorp/nomad (Go) Jul 20, 2023
anonymous4ACL24
Nomad ACL Policies without Label are Applied to Unexpected Resources Moderate
CVE-2023-3072 was published for github.com/hashicorp/nomad (Go) Jul 20, 2023
anonymous4ACL24
A Cross Site Scripting (XSS) vulnerability in add_donor.php of Blood Bank And Donation Management... Moderate Unreviewed
CVE-2024-45984 was published Sep 26, 2024
A Cross Site Scripting (XSS) vulnerability in update_contact.php of Blood Bank and Donation... Moderate Unreviewed
CVE-2024-45985 was published Sep 26, 2024
The goTenna Pro series use AES CTR mode for short, encrypted messages without any additional... Moderate Unreviewed
CVE-2024-47123 was published Sep 26, 2024
SAP Replication Server allows an attacker to use gateway for executing some commands to RSSD.... Moderate Unreviewed
CVE-2024-33008 was published May 14, 2024
SAP Business One (B1i) - version 10.0, allows an authorized attacker to retrieve the details... Moderate Unreviewed
CVE-2023-41365 was published Oct 10, 2023
Multiple Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST... Moderate Unreviewed
CVE-2024-47044 was published Sep 26, 2024
A Cross-Site Request Forgery (CSRF) vulnerability exists in kishan0725's Hospital Management... Moderate Unreviewed
CVE-2024-45983 was published Sep 26, 2024
Assimp v5.4.3 is vulnerable to Buffer Overflow via the MD5Importer::LoadMD5MeshFile function. Moderate Unreviewed
CVE-2024-46632 was published Sep 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database