Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,998
Maven
5,000+
npm
3,710
NuGet
661
pip
3,364
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

255,734 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check... High Unreviewed
CVE-2024-46814 was published Sep 27, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check... High Unreviewed
CVE-2024-46818 was published Sep 27, 2024
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain... High Unreviewed
CVE-2024-40510 was published Sep 27, 2024
Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking... Critical Unreviewed
CVE-2024-8643 was published Sep 27, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: the warning... Moderate Unreviewed
CVE-2024-46819 was published Sep 27, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amd/amdgpu: Check tbo... Moderate Unreviewed
CVE-2024-46807 was published Sep 27, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_unfilter() function at... High Unreviewed
CVE-2024-46259 was published Oct 1, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-8607 was published Sep 27, 2024
Cleartext Storage of Sensitive Information in a Cookie vulnerability in Oceanic Software ValeApp... Critical Unreviewed
CVE-2024-8644 was published Sep 27, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Check debug trap... Moderate Unreviewed
CVE-2024-46803 was published Sep 27, 2024
The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin... Moderate Unreviewed
CVE-2024-5053 was published Sep 1, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: do not BUG_ON() when... Moderate Unreviewed
CVE-2024-44963 was published Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved: binfmt_flat: Fix corruption... Moderate Unreviewed
CVE-2024-44966 was published Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart:... Moderate Unreviewed
CVE-2024-44962 was published Sep 4, 2024
The goTenna Pro has a payload length vulnerability that makes it possible to tell the length of... Moderate Unreviewed
CVE-2024-47129 was published Sep 26, 2024
The goTenna Pro series allows unauthenticated attackers to remotely update the local public keys... High Unreviewed
CVE-2024-47130 was published Sep 26, 2024
In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Fix NULL... Unknown Unreviewed
CVE-2024-27060 was published May 1, 2024
A link following vulnerability in the Trend Micro Apex One and Apex One as a Service Damage... Moderate Unreviewed
CVE-2024-36306 was published Jun 11, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed
CVE-2024-36303 was published Jun 11, 2024
A cross-site scripting (XSS) vulnerability in Gestsup v3.2.46 allows attackers to execute... Moderate Unreviewed
CVE-2023-52059 was published Feb 13, 2024
The MapPress Maps for WordPress plugin before 2.88.16 does not ensure that posts to be retrieve... Moderate Unreviewed
CVE-2024-0421 was published Feb 12, 2024
The MapPress Maps for WordPress plugin before 2.88.15 does not sanitize and escape the map title... Moderate Unreviewed
CVE-2024-0420 was published Feb 12, 2024
There is a reflected cross site scripting in Esri Portal for ArcGIS 11.1 and below on Windows and... Moderate Unreviewed
CVE-2024-25707 was published Oct 4, 2024
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 10.8.1 - 11.2 that may... Moderate Unreviewed
CVE-2024-8148 was published Oct 4, 2024
There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise... Moderate Unreviewed
CVE-2024-25694 was published Oct 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database