GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,489 advisories
Filter by severity
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious...
Moderate
Unreviewed
CVE-2024-0158
was published
Jul 2, 2024
Inadequate input validation exposes the system to potential remote code execution (RCE) risks....
Critical
Unreviewed
CVE-2023-41917
was published
Jul 2, 2024
Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to...
Unknown
Unreviewed
CVE-2024-39573
was published
Jul 1, 2024
MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection...
High
Unreviewed
CVE-2024-6376
was published
Jul 1, 2024
A SQL Injection vulnerability in Fortra FileCatalyst Workflow allows an attacker to modify...
Critical
Unreviewed
CVE-2024-5276
was published
Jun 25, 2024
Due to an improper input validation, an unauthenticated threat actor can send a malicious message...
Unknown
Unreviewed
CVE-2024-5990
was published
Jun 25, 2024
Due to an improper input validation, an unauthenticated threat actor can send a malicious message...
Unknown
Unreviewed
CVE-2024-5989
was published
Jun 25, 2024
Due to an improper input validation, an unauthenticated threat actor can send a malicious message...
Unknown
Unreviewed
CVE-2024-5988
was published
Jun 25, 2024
An improper input validation vulnerability was discovered in Avaya IP Office that could allow...
Critical
Unreviewed
CVE-2024-4196
was published
Jun 25, 2024
A flaw was found in the Poppler's Pdfinfo utility. This issue occurs when using -dests parameter...
Moderate
Unreviewed
CVE-2024-6239
was published
Jun 21, 2024
Improper Input Validation vulnerability in ABB 800xA Base.
An attacker who successfully exploited...
Moderate
Unreviewed
CVE-2024-3036
was published
Jun 21, 2024
There is an insufficient input validation vulnerability in
the Warehouse component of Absolute...
Moderate
Unreviewed
CVE-2024-37346
was published
Jun 20, 2024
When Bazel Plugin in intellij imports a project (either using "import project" or "Auto import")...
Unknown
Unreviewed
CVE-2024-5899
was published
Jun 18, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally...
High
Unreviewed
CVE-2024-32859
was published
Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally...
High
Unreviewed
CVE-2024-32858
was published
Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally...
High
Unreviewed
CVE-2024-32860
was published
Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally...
Moderate
Unreviewed
CVE-2024-32856
was published
Jun 13, 2024
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an...
Critical
Unreviewed
CVE-2024-34108
was published
Jun 13, 2024
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an...
High
Unreviewed
CVE-2024-34109
was published
Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation...
Low
Unreviewed
CVE-2024-36226
was published
Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation...
Low
Unreviewed
CVE-2024-26127
was published
Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation...
Low
Unreviewed
CVE-2024-26126
was published
Jun 13, 2024
An improper input validation vulnerability in the SGI Image Codec of QNX SDP version(s) 6.6, 7.0,...
Critical
Unreviewed
CVE-2024-35213
was published
Jun 11, 2024
Windows Wi-Fi Driver Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-30078
was published
Jun 11, 2024
Win32k Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-30087
was published
Jun 11, 2024
ProTip!
Advisories are also available from the
GraphQL API