GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 19,370
Composer 3,968
Erlang 29
GitHub Actions 16
Go 1,749
Maven 4,978
npm 3,509
NuGet 609
pip 3,084
Pub 10
RubyGems 832
Rust 782
Swift 34

Unreviewed advisories

All unreviewed 221,313

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

221,313 advisories

Filter by severity

Sort by

Least recently updated

IBM InfoSphere Information Server 11.7 is vulnerable stored to cross-site scripting. This... Moderate Unreviewed

CVE-2024-28797 was published Jun 30, 2024

IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2024-35119 was published Jun 30, 2024

IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2023-50953 was published Jun 30, 2024

IBM InfoSphere Information Server 11.7 is vulnerable to server-side request forgery (SSRF). This... Moderate Unreviewed

CVE-2023-50952 was published Jun 30, 2024

IBM InfoSphere Information Server 11.7 could allow an authenticated user to read or modify... Moderate Unreviewed

CVE-2024-31898 was published Jun 30, 2024

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability... Moderate Unreviewed

CVE-2024-28795 was published Jun 30, 2024

IBM InfoSphere Information Server 11.7 returns sensitive information in URL information that... Moderate Unreviewed

CVE-2023-50954 was published Jun 30, 2024

IBM InfoSphere Information Server 11.7 is vulnerable to stored cross-site scripting. This... High Unreviewed

CVE-2024-28798 was published Jun 30, 2024

IBM InfoSphere Information Server 11.7 could allow a local user to update projects that they do... Moderate Unreviewed

CVE-2023-35022 was published Jun 30, 2024

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could... Moderate Unreviewed

CVE-2024-31902 was published Jun 30, 2024

A reflected Cross-Site Scripting (XSS) vulnerability was identified in zenml-io/zenml version 0... Moderate Unreviewed

CVE-2024-5062 was published Jun 30, 2024

Path Traversal: '\..\filename' in GitHub repository stitionai/devika prior to -. Critical Unreviewed

CVE-2024-5926 was published Jun 30, 2024

A vulnerability classified as problematic was found in Ingenico Estate Manager 2023. Affected by... Moderate Unreviewed

CVE-2024-6415 was published Jun 30, 2024

A vulnerability classified as problematic has been found in Parsec Automation TrakSYS 11.x.x.... Moderate Unreviewed

CVE-2024-6414 was published Jun 30, 2024

Internet2 Grouper before 5.6 allows authentication bypass when LDAP authentication is used in... Unknown Unreviewed

CVE-2024-39848 was published Jun 30, 2024

NewPass before 1.2.0 stores passwords (rather than password hashes) directly, which makes it... Unknown Unreviewed

CVE-2024-39846 was published Jun 29, 2024

Factorio before 1.1.101 allows a crafted server to execute arbitrary code on clients via a custom... Unknown Unreviewed

CVE-2024-39840 was published Jun 29, 2024

The WordPress Plugin for Google Maps – WP MAPS plugin for WordPress is vulnerable to SQL... High Unreviewed

CVE-2024-2386 was published Jun 29, 2024

iDRAC9, versions prior to 7.00.00.172 for 14th Generation and 7.10.50.00 for 15th and 16th... High Unreviewed

CVE-2024-25943 was published Jun 29, 2024

The Goya theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘attra-color... Moderate Unreviewed

CVE-2023-4017 was published Jun 29, 2024

The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is... Moderate Unreviewed

CVE-2024-5819 was published Jun 29, 2024

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-5790 was published Jun 29, 2024

The Extensions for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-5666 was published Jun 29, 2024

The Stock Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2024-6363 was published Jun 29, 2024

The Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create... Moderate Unreviewed

CVE-2024-5192 was published Jun 29, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

221,313 advisories