GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
4,497 advisories
Filter by severity
MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection...
High
Unreviewed
CVE-2024-6376
was published
Jul 1, 2024
socket.io has an unhandled 'error' event
High
CVE-2024-38355
was published
for
socket.io
(npm)
Jun 19, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally...
High
Unreviewed
CVE-2024-32859
was published
Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally...
High
Unreviewed
CVE-2024-32858
was published
Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally...
High
Unreviewed
CVE-2024-32860
was published
Jun 13, 2024
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an...
High
Unreviewed
CVE-2024-34109
was published
Jun 13, 2024
Windows Wi-Fi Driver Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-30078
was published
Jun 11, 2024
Win32k Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-30087
was published
Jun 11, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ...
High
Unreviewed
CVE-2024-35212
was published
Jun 11, 2024
In mintplex-labs/anything-llm, a vulnerability exists in the thread update process that allows...
High
Unreviewed
CVE-2024-3150
was published
Jun 6, 2024
mintplex-labs/anything-llm is vulnerable to multiple security issues due to improper input...
High
Unreviewed
CVE-2024-3152
was published
Jun 6, 2024
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6...
High
Unreviewed
CVE-2024-23668
was published
Jun 3, 2024
MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service
High
Unreviewed
CVE-2024-36390
was published
Jun 2, 2024
Moodle Improper Input Validation
High
CVE-2024-33999
was published
for
moodle/moodle
(Composer)
May 31, 2024
TYPO3 Arbitrary Shell Execution in Swiftmailer library
High
GHSA-45xg-4w5x-j429
was published
for
typo3/cms
(Composer)
May 30, 2024
silverstripe/framework has possible denial of service attack vector when flushing
High
GHSA-cwgq-83w5-8jfq
was published
for
silverstripe/framework
(Composer)
May 28, 2024
In mintplex-labs/anything-llm, a vulnerability exists due to improper input validation in the...
High
Unreviewed
CVE-2024-4287
was published
May 20, 2024
A potential vulnerability has been identified for OpenText Operations Bridge Reporter. The...
High
Unreviewed
CVE-2021-22508
was published
May 17, 2024
Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious...
High
Unreviewed
CVE-2024-22429
was published
May 17, 2024
Improper input validation in PfrSmiUpdateFw driver in UEFI firmware for some Intel(R) Server...
High
Unreviewed
CVE-2024-24981
was published
May 16, 2024
Improper input validation in PlatformVariableInitDxe driver in UEFI firmware for some Intel(R)...
High
Unreviewed
CVE-2024-22095
was published
May 16, 2024
Improper input validation in PprRequestLog module in UEFI firmware for some Intel(R) Server...
High
Unreviewed
CVE-2024-22382
was published
May 16, 2024
Improper input validation in UserAuthenticationSmm driver in UEFI firmware for some Intel(R)...
High
Unreviewed
CVE-2024-23487
was published
May 16, 2024
ProTip!
Advisories are also available from the
GraphQL API