Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,996
Maven
5,000+
npm
3,709
NuGet
661
pip
3,348
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

255,714 advisories

Loading
async-graphql Directive Overload High
CVE-2024-47614 was published for async-graphql (Rust) Oct 3, 2024
MindPatch
Apache Zeppelin vulnerable to cross-site scripting in the helium module Moderate
CVE-2024-31868 was published for org.apache.zeppelin:zeppelin-interpreter (Maven) Apr 9, 2024
oscerd
Apache Ambari: Various Cross site scripting problems Moderate
CVE-2023-50378 was published for org.apache.ambari:ambari (Maven) Mar 1, 2024
oscerd
Apache Superset: Improper error handling on alerts Moderate
CVE-2024-27315 was published for apache-superset (pip) Feb 28, 2024
oscerd
Apache NiFi Code Injection vulnerability High
CVE-2023-36542 was published for org.apache.nifi:nifi-cdc-mysql-bundle (Maven) Jul 29, 2023
SUCHMOKUO node-worker-threads-pool denial of service Vulnerability Moderate
CVE-2021-29057 was published for node-worker-threads-pool (npm) Aug 11, 2023
nalandial
Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader High
CVE-2024-47554 was published for commons-io:commons-io (Maven) Oct 3, 2024
A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and... High Unreviewed
CVE-2024-20433 was published Sep 25, 2024
Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola... High Unreviewed
CVE-2023-23774 was published Aug 29, 2023
In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: fix panic... Moderate Unreviewed
CVE-2024-44975 was published Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved: mm, slub: do not call... Moderate Unreviewed
CVE-2024-44973 was published Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix... Moderate Unreviewed
CVE-2024-44970 was published Sep 4, 2024
An issue in Prestashop v.8.1.7 and before allows a remote attacker to execute arbitrary code via... Critical Unreviewed
CVE-2024-41651 was published Aug 12, 2024
Zohocorp ManageEngine Analytics Plus versions before 5410 and Zoho Analytics On-Premise versions... Moderate Unreviewed
CVE-2024-9100 was published Oct 3, 2024
A vulnerability was found in Codezips Online Shopping Portal 1.0. It has been classified as... Moderate Unreviewed
CVE-2024-9460 was published Oct 3, 2024
The AVGUI.exe of AVG/Avast Antivirus before versions before 24.1 can allow a local attacker to... High Unreviewed
CVE-2024-5803 was published Oct 3, 2024
In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: fix kexec crash... Moderate Unreviewed
CVE-2024-46864 was published Sep 27, 2024
A vulnerability in Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS)... Moderate Unreviewed
CVE-2024-20508 was published Sep 25, 2024
Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_Processor:... Moderate Unreviewed
CVE-2023-38666 was published Aug 22, 2023
Heap buffer overflow in Blink in Google Chrome prior to 101.0.4951.41 allowed a remote attacker... Critical Unreviewed
CVE-2022-4920 was published Jul 29, 2023
Decidim has a cross-site scripting vulnerability in the version control page High
CVE-2024-41673 was published for decidim (RubyGems) Oct 1, 2024
An issue has been discovered in GitLab affecting all versions before 16.6.6, 16.7 prior to 16.7.4... Moderate Unreviewed
CVE-2023-5612 was published Jan 26, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.10.6, version 16.11... Moderate Unreviewed
CVE-2024-2874 was published May 23, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions... Moderate Unreviewed
CVE-2024-2818 was published Mar 28, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 16.5 before 16.7.6... Moderate Unreviewed
CVE-2023-6477 was published Feb 22, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database