GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
240,844 advisories
Filter by severity
rjrodger jsonic-next v2.12.1 was discovered to contain a prototype pollution via the function...
Unknown
Unreviewed
CVE-2024-39002
was published
Jul 1, 2024
amoyjs amoy common v1.0.10 was discovered to contain a prototype pollution via the function...
Unknown
Unreviewed
CVE-2024-39003
was published
Jul 1, 2024
adolph_dudu ratio-swiper v0.0.2 was discovered to contain a prototype pollution via the function...
Unknown
Unreviewed
CVE-2024-39000
was published
Jul 1, 2024
ag-grid-enterprise v31.3.2 was discovered to contain a prototype pollution via the component...
Unknown
Unreviewed
CVE-2024-39001
was published
Jul 1, 2024
jrburke requirejs v2.3.6 was discovered to contain a prototype pollution via the function s...
Unknown
Unreviewed
CVE-2024-38999
was published
Jul 1, 2024
jrburke requirejs v2.3.6 was discovered to contain a prototype pollution via the function config....
Unknown
Unreviewed
CVE-2024-38998
was published
Jul 1, 2024
ag-grid-community were discovered to contain a prototype pollution via the _.mergeDeep function
Moderate
CVE-2024-38996
was published
for
ag-grid-community
(npm)
Jul 1, 2024
adolph_dudu ratio-swiper was discovered to contain a prototype pollution via the function extendDefaults
Moderate
CVE-2024-38997
was published
for
@adolph_dudu/ratio-swiper
(npm)
Jul 1, 2024
@amoy/common v was discovered to contain a prototype pollution via the function extend
Moderate
CVE-2024-38994
was published
for
@amoy/common
(npm)
Jul 1, 2024
jsonic was discovered to contain a prototype pollution via the function empty.
Moderate
CVE-2024-38993
was published
for
jsonic
(npm)
Jul 1, 2024
Tada5hi sp-common v0.5.4 was discovered to contain a prototype pollution via the function...
Unknown
Unreviewed
CVE-2024-38990
was published
Jul 1, 2024
frappejs was discovered to contain a prototype pollution via the function registerView
Moderate
CVE-2024-38992
was published
for
@airvertco/frappejs
(npm)
Jul 1, 2024
akbr patch-into was discovered to contain a prototype pollution via the function patchInto
Moderate
CVE-2024-38991
was published
for
@akbr/patch-into
(npm)
Jul 1, 2024
aofl cli-lib v3.14.0 was discovered to contain a prototype pollution via the component...
Unknown
Unreviewed
CVE-2024-38987
was published
Jul 1, 2024
In faceid servive, there is a possible out of bounds write due to a missing bounds check. This...
Moderate
Unreviewed
CVE-2024-39430
was published
Jul 1, 2024
In trusty service, there is a possible out of bounds write due to a missing bounds check. This...
Moderate
Unreviewed
CVE-2024-39427
was published
Jul 1, 2024
In faceid servive, there is a possible out of bounds write due to a missing bounds check. This...
Moderate
Unreviewed
CVE-2024-39429
was published
Jul 1, 2024
In trusty service, there is a possible out of bounds write due to a missing bounds check. This...
Moderate
Unreviewed
CVE-2024-39428
was published
Jul 1, 2024
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd...
Unknown
Unreviewed
CVE-2024-0153
was published
Jul 1, 2024
The Form Maker by 10Web WordPress plugin before 1.15.26 does not sanitise and escape some of its...
Unknown
Unreviewed
CVE-2024-6130
was published
Jul 1, 2024
In venc, there is a possible out of bounds write due to type confusion. This could lead to local...
Unknown
Unreviewed
CVE-2024-20078
was published
Jul 1, 2024
In gnss service, there is a possible escalation of privilege due to improper certificate...
Unknown
Unreviewed
CVE-2024-20080
was published
Jul 1, 2024
In gnss service, there is a possible out of bounds write due to improper input validation. This...
Unknown
Unreviewed
CVE-2024-20079
was published
Jul 1, 2024
CHANGING Mobile One Time Password does not properly filter parameters for the file download...
Moderate
Unreviewed
CVE-2024-3122
was published
Jul 1, 2024
In gnss service, there is a possible out of bounds write due to improper input validation. This...
Unknown
Unreviewed
CVE-2024-20081
was published
Jul 1, 2024
ProTip!
Advisories are also available from the
GraphQL API