Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,669 advisories

Loading
IBM App Connect Enterprise Certified Container 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, and 12.3 could... High Unreviewed
CVE-2024-51465 was published Dec 4, 2024
A post-authentication command injection vulnerability in the "host" parameter of the diagnostic... High Unreviewed
CVE-2024-9200 was published Dec 3, 2024
Authenticated remote code execution (RCE) vulnerabilities affect TP-Link Archer, Deco, and Tapo... High Unreviewed
CVE-2024-53375 was published Dec 3, 2024
An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware... High Unreviewed
CVE-2024-53939 was published Dec 3, 2024
An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware... High Unreviewed
CVE-2024-53940 was published Dec 3, 2024
IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a remote authenticated... Critical Unreviewed
CVE-2024-49803 was published Nov 29, 2024
Certain models of routers from Billion Electric has an OS Command Injection vulnerability,... High Unreviewed
CVE-2024-11983 was published Nov 29, 2024
A vulnerability in ESM 11.6.10 allows unauthenticated access to the internal Snowservice API and... Critical Unreviewed
CVE-2024-11482 was published Nov 29, 2024
The Logo Slider WordPress plugin before 4.5.0 does not sanitise and escape some of its Logo and... Moderate Unreviewed
CVE-2024-10896 was published Nov 28, 2024
EnGenius EWS356-FIR 1.1.30 and earlier devices allow a remote attacker to execute arbitrary OS... High Unreviewed
CVE-2024-31976 was published Nov 27, 2024
An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121... Moderate Unreviewed
CVE-2024-51228 was published Nov 27, 2024
The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for... High Unreviewed
CVE-2024-9461 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... Critical Unreviewed
CVE-2024-50370 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... High Unreviewed
CVE-2024-50368 was published Nov 26, 2024
A CWE-79 "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"... High Unreviewed
CVE-2024-50376 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... Critical Unreviewed
CVE-2024-50373 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... Critical Unreviewed
CVE-2024-50372 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... High Unreviewed
CVE-2024-50369 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... Critical Unreviewed
CVE-2024-50371 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... Critical Unreviewed
CVE-2024-50374 was published Nov 26, 2024
A CWE-306 "Missing Authentication for Critical Function" was discovered affecting the following... Critical Unreviewed
CVE-2024-50375 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... High Unreviewed
CVE-2024-50364 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... High Unreviewed
CVE-2024-50362 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... High Unreviewed
CVE-2024-50365 was published Nov 26, 2024
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... High Unreviewed
CVE-2024-50363 was published Nov 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database