GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,892
Composer 4,266
Erlang 31
GitHub Actions 21
Go 2,041
Maven 5,224
npm 3,733
NuGet 662
pip 3,414
Pub 12
RubyGems 891
Rust 866
Swift 36

Unreviewed advisories

All unreviewed 238,102

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

93,709 advisories

Filter by severity

Sort by

Least recently updated

Dell Inventory Collector Client, versions prior to 12.7.0, contains an Improper Link Resolution... High Unreviewed

CVE-2024-47480 was published Dec 18, 2024

A flaw was found in Open Cluster Management (OCM) when a user has access to the worker nodes... High Unreviewed

CVE-2024-9779 was published Dec 18, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed

CVE-2024-12191 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed

CVE-2024-12179 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed

CVE-2024-12198 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed

CVE-2024-12669 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory... High Unreviewed

CVE-2024-12194 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed

CVE-2024-12193 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed

CVE-2024-11422 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory... High Unreviewed

CVE-2024-12178 was published Dec 17, 2024

A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed

CVE-2024-12670 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed

CVE-2024-12671 was published Dec 17, 2024

A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed

CVE-2024-12192 was published Dec 17, 2024

Default credentials are used in the above listed BD Diagnostic Solutions products. If exploited,... High Unreviewed

CVE-2024-10476 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed

CVE-2024-12200 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed

CVE-2024-12197 was published Dec 17, 2024

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed

CVE-2024-12199 was published Dec 17, 2024

A NULL pointer dereference in D-Link DAP-1513 REVA_FIRMWARE_1.01 allows attackers to cause a... High Unreviewed

CVE-2024-36832 was published Dec 17, 2024

The s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member... High Unreviewed

CVE-2024-8326 was published Dec 17, 2024

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-12024 was published Dec 17, 2024

The User Role Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... High Unreviewed

CVE-2024-12293 was published Dec 17, 2024

Locally installed application can bypass the permission check and perform system operations that... High Unreviewed

CVE-2021-26280 was published Dec 17, 2024

CWE-1104: Use of Unmaintained Third-Party Components vulnerability exists that could cause... High Unreviewed

CVE-2024-11999 was published Dec 17, 2024

The WP All Import Pro plugin for WordPress is vulnerable to Server-Side Request Forgery in all... High Unreviewed

CVE-2024-9624 was published Dec 17, 2024

CA Client Automation (ITCM) allows non-admin/non-root users to encrypt a string using CAF CLI and... High Unreviewed

CVE-2024-38499 was published Dec 17, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

93,709 advisories