Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,007 advisories

Loading
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30044 was published May 14, 2024
Microsoft Excel Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30042 was published May 14, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, has been found... Moderate Unreviewed
CVE-2024-4699 was published May 14, 2024
Deserialization of Untrusted Data vulnerability in BdThemes Ultimate Store Kit Elementor Addons... Moderate Unreviewed
CVE-2024-4606 was published May 14, 2024
A deserialization of untrusted data vulnerability exists in common code used by FlexLogger and... High Unreviewed
CVE-2024-4044 was published May 14, 2024
Deserialization of Untrusted Data vulnerability in OCDI One Click Demo Import.This issue affects... Moderate Unreviewed
CVE-2024-34433 was published May 14, 2024
Due to an unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server... Critical Unreviewed
CVE-2024-29212 was published May 14, 2024
The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This... Critical Unreviewed
CVE-2024-28075 was published May 14, 2024
The IBM SDK, Java Technology Edition's Object Request Broker (ORB) 7.1.0.0 through 7.1.5.21 and 8... Moderate Unreviewed
CVE-2023-38264 was published May 14, 2024
Dell PowerProtect DM5500 version 5.15.0.0 and prior contains an insecure deserialization... Low Unreviewed
CVE-2024-22460 was published May 8, 2024
Apache Inlong Deserialization of Untrusted Data vulnerability Critical
CVE-2024-26579 was published for org.apache.inlong:manager-pojo (Maven) May 8, 2024
image-optimizer allows PHAR deserialization High
CVE-2024-34515 was published for spatie/image-optimizer (Composer) May 5, 2024
kurwov vulnerable to Denial of Service due to improper data sanitization Moderate
CVE-2024-34075 was published for kurwov (npm) May 3, 2024
SuperchupuDev
Credited to SuperchupuDev
sagemaker-python-sdk vulnerable to Deserialization of Untrusted Data High
CVE-2024-34072 was published for sagemaker (pip) May 3, 2024
Kasimir123
Credited to Kasimir123
Voltronic Power ViewPower Deserialization of Untrusted Data Remote Code Execution Vulnerability.... Critical Unreviewed
CVE-2023-51576 was published May 3, 2024
Inductive Automation Ignition RunQuery Deserialization of Untrusted Data Remote Code Execution... High Unreviewed
CVE-2023-50219 was published May 3, 2024
Inductive Automation Ignition Base64Element Deserialization of Untrusted Data Remote Code... High Unreviewed
CVE-2023-50220 was published May 3, 2024
Inductive Automation Ignition ExtendedDocumentCodec Deserialization of Untrusted Data Remote Code... High Unreviewed
CVE-2023-50223 was published May 3, 2024
Inductive Automation Ignition ResponseParser SerializedResponse Deserialization of Untrusted Data... High Unreviewed
CVE-2023-50221 was published May 3, 2024
Inductive Automation Ignition ModuleInvoke Deserialization of Untrusted Data Remote Code... High Unreviewed
CVE-2023-50218 was published May 3, 2024
Inductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data... High Unreviewed
CVE-2023-50222 was published May 3, 2024
Inductive Automation Ignition JavaSerializationCodec Deserialization of Untrusted Data Remote... Critical Unreviewed
CVE-2023-39476 was published May 3, 2024
Inductive Automation Ignition AbstractGatewayFunction Deserialization of Untrusted Data Remote... High Unreviewed
CVE-2023-39473 was published May 3, 2024
Inductive Automation Ignition ParameterVersionJavaSerializationCodec Deserialization of Untrusted... Critical Unreviewed
CVE-2023-39475 was published May 3, 2024
The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to PHP... High Unreviewed
CVE-2023-7064 was published May 2, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database