GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,892
Composer 4,266
Erlang 31
GitHub Actions 21
Go 2,041
Maven 5,224
npm 3,733
NuGet 662
pip 3,414
Pub 12
RubyGems 891
Rust 866
Swift 36

Unreviewed advisories

All unreviewed 238,096

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

238,096 advisories

Filter by severity

Sort by

Least recently updated

A stored cross-site scripting (XSS) vulnerability was identified in Phpgurukul Online Birth... Moderate Unreviewed

CVE-2024-55056 was published Dec 17, 2024

Phpgurukul Online Birth Certificate System 1.0 suffers from insufficient password requirements... Moderate Unreviewed

CVE-2024-55057 was published Dec 17, 2024

An OS command injection vulnerability exists in the NAT parameter of GoCast 1.1.3. A specially... Critical Unreviewed

CVE-2024-29224 was published Dec 18, 2024

An issue in H3C switch h3c-S1526 allows a remote attacker to obtain sensitive information via the... Unknown Unreviewed

CVE-2024-51175 was published Dec 18, 2024

rizin before v0.6.3 is vulnerable to Improper Neutralization of Special Elements via meta_set... Unknown Unreviewed

CVE-2024-31668 was published Dec 18, 2024

A vulnerability was found in Keycloak. The environment option `KC_CACHE_EMBEDDED_MTLS_ENABLED`... Moderate Unreviewed

CVE-2024-10973 was published Dec 18, 2024

Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary... Unknown Unreviewed

CVE-2024-29646 was published Dec 18, 2024

A flaw was found in Open Cluster Management (OCM) when a user has access to the worker nodes... High Unreviewed

CVE-2024-9779 was published Dec 18, 2024

Cross-site scripting (XSS) vulnerability in the edit Service Access Policy page in Liferay Portal... Moderate Unreviewed

CVE-2023-37940 was published Dec 18, 2024

In multiple locations, there is a possible permissions bypass due to a missing null check. This... High Unreviewed

CVE-2024-34719 was published Nov 13, 2024

Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble version was discovered to contain... High Unreviewed

CVE-2024-38922 was published Dec 7, 2024

CyberPanel before 2.3.8 allows remote authenticated users to execute arbitrary commands via shell... High Unreviewed

CVE-2024-53376 was published Dec 16, 2024

An issue was discovered in the Graphics::ColorNames package before 3.2.0 for Perl. There is an... Moderate Unreviewed

CVE-2024-55918 was published Dec 13, 2024

A cross-site scripting (XSS) vulnerability in the Web Reports component of HCL BigFix Platform... Low Unreviewed

CVE-2023-37531 was published Feb 29, 2024

A cross-site scripting (XSS) vulnerability in the Web Reports component of HCL BigFix Platform... Low Unreviewed

CVE-2023-37530 was published Feb 29, 2024

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component... Unknown Unreviewed

CVE-2024-55513 was published Dec 17, 2024

An insecure direct object reference (IDOR) vulnerability was discovered in PHPGurukul Online... Unknown Unreviewed

CVE-2024-55058 was published Dec 17, 2024

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 v3.90. The... Unknown Unreviewed

CVE-2024-55516 was published Dec 17, 2024

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component... Unknown Unreviewed

CVE-2024-55515 was published Dec 17, 2024

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component... Unknown Unreviewed

CVE-2024-55514 was published Dec 17, 2024

Databricks JDBC Driver before 2.6.40 could potentially allow remote code execution (RCE) by... Unknown Unreviewed

CVE-2024-49194 was published Dec 17, 2024

A stored HTML Injection vulnerability was identified in PHPGurukul Online Birth Certificate... Unknown Unreviewed

CVE-2024-55059 was published Dec 17, 2024

In wifi_item_edit_content of styles.xml , there is a possible FRP bypass due to Missing check for... High Unreviewed

CVE-2024-40650 was published Sep 11, 2024

In getConfig of SoftVideoDecoderOMXComponent.cpp, there is a possible out of bounds write due to... High Unreviewed

CVE-2024-40658 was published Sep 11, 2024

In mayAdminGrantPermission of AdminRestrictedPermissionsUtils.java, there is a possible way to... High Unreviewed

CVE-2024-40661 was published Nov 13, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

238,096 advisories