GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,144
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,760
NuGet 678
pip 3,446
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,561

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

113,183 advisories

Filter by severity

Sort by

Least recently updated

Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. A... Moderate Unreviewed

CVE-2023-32466 was published Jul 24, 2024

Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds read vulnerability. A... Moderate Unreviewed

CVE-2023-32471 was published Jul 24, 2024

An issue in the Certificate Authenticated Session Establishment (CASE) protocol for establishing... Moderate Unreviewed

CVE-2024-3297 was published Jul 24, 2024

The All-in-One Video Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-6629 was published Jul 24, 2024

The WP ULike WordPress plugin before 4.7.1 does not sanitise and escape some of its settings,... Moderate Unreviewed

CVE-2024-6094 was published Jul 24, 2024

The WP EasyPay – Square for WordPress plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-5861 was published Jul 24, 2024

The Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create... Moderate Unreviewed

CVE-2024-6836 was published Jul 24, 2024

The LiteSpeed Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-3246 was published Jul 24, 2024

The Social Auto Poster plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2024-6752 was published Jul 24, 2024

The Social Auto Poster plugin for WordPress is vulnerable to unauthorized modification and loss... Moderate Unreviewed

CVE-2024-6755 was published Jul 24, 2024

The Social Auto Poster plugin for WordPress is vulnerable to unauthorized modification of data to... Moderate Unreviewed

CVE-2024-6754 was published Jul 24, 2024

The Social Auto Poster plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2024-6751 was published Jul 24, 2024

In lj_str_hash.c in OpenResty 1.19.3.1 through 1.25.3.1, the string hashing function (used during... Moderate Unreviewed

CVE-2024-39702 was published Jul 23, 2024

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site... Moderate Unreviewed

CVE-2024-34128 was published Jul 23, 2024

InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed

CVE-2024-41836 was published Jul 23, 2024

Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation... Moderate Unreviewed

CVE-2024-41839 was published Jul 23, 2024

In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks... Moderate Unreviewed

CVE-2024-41012 was published Jul 23, 2024

The Request a Quote WordPress plugin before 2.4.1 does not sanitise and escape some of its... Moderate Unreviewed

CVE-2024-6231 was published Jul 23, 2024

The Page Builder Gutenberg Blocks WordPress plugin before 3.1.12 does not prevent users from... Moderate Unreviewed

CVE-2024-4260 was published Jul 23, 2024

The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3... Moderate Unreviewed

CVE-2024-1575 was published Jul 23, 2024

Cross Site Scripting vulnerability in Act-On 2023 allows a remote attacker to execute arbitrary... Moderate Unreviewed

CVE-2024-24507 was published Jul 23, 2024

An incorrect permission in the installation directory for the shared NI SystemLink Server... Moderate Unreviewed

CVE-2024-6122 was published Jul 22, 2024

An integer overflow vulnerability due to improper input validation when reading TDMS files in... Moderate Unreviewed

CVE-2024-6638 was published Jul 22, 2024

In veilid-core in Veilid before 0.3.4, the protocol's ping function can be misused in a way that... Moderate Unreviewed

CVE-2024-41880 was published Jul 22, 2024

A misconfiguration on UniFi U6+ Access Point could cause an incorrect VLAN traffic forwarding to... Moderate Unreviewed

CVE-2024-37380 was published Jul 22, 2024

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

113,183 advisories