GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,726
Composer 4,237
Erlang 31
GitHub Actions 21
Go 2,003
Maven 5,192
npm 3,714
NuGet 661
pip 3,387
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,543

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

118,058 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability, which was classified as problematic, has been found in 1000 Projects Bookstore... Moderate Unreviewed

CVE-2024-11673 was published Nov 26, 2024

TOTOLINK EX200 v4.0.3c.7646_B20201211 was found to contain a command insertion vulnerability in... Moderate Unreviewed

CVE-2024-53333 was published Nov 26, 2024

A vulnerability, which was classified as critical, was found in CodeAstro Hospital Management... Moderate Unreviewed

CVE-2024-11674 was published Nov 26, 2024

A cross-site scripting (XSS) vulnerability in the /scroll.php endpoint of LafeLabs Chaos v0.0.1... Moderate Unreviewed

CVE-2024-53599 was published Nov 25, 2024

A Stored Cross-Site Scripting (XSS) vulnerability in the Management Console of BlackBerry AtHoc... Moderate Unreviewed

CVE-2024-51723 was published Nov 25, 2024

Keycloak proxy header handling Denial-of-Service (DoS) vulnerability Moderate

CVE-2024-9666 was published for org.keycloak:keycloak-quarkus-server (Maven) Nov 25, 2024

Cilium's Layer 7 policy enforcement may not occur in policies with wildcarded port ranges Moderate

CVE-2024-52529 was published for github.com/cilium/cilium (Go) Nov 25, 2024

Keycloak Path Traversal Vulnerability Due to External Control of File Name or Path Moderate

CVE-2024-10492 was published for org.keycloak:keycloak-quarkus-server (Maven) Nov 25, 2024

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL... Moderate Unreviewed

CVE-2024-11498 was published Nov 25, 2024

There exists an out of bounds read/write in LibJXL versions prior to commit... Moderate Unreviewed

CVE-2024-11403 was published Nov 25, 2024

Incorrect authorization in the permission validation component of Devolutions Remote Desktop... Moderate Unreviewed

CVE-2024-11670 was published Nov 25, 2024

Incorrect authorization in the add permission component in Devolutions Remote Desktop Manager... Moderate Unreviewed

CVE-2024-11672 was published Nov 25, 2024

Improper authentication in SQL data source MFA validation in Devolutions Remote Desktop Manager... Moderate Unreviewed

CVE-2024-11671 was published Nov 25, 2024

IBM Jazz Foundation 7.0.2 and below are vulnerable to cross-site scripting. This vulnerability... Moderate Unreviewed

CVE-2023-45181 was published Nov 25, 2024

libre-chat Path Traversal vulnerability Moderate

CVE-2024-52787 was published for libre-chat (pip) Nov 25, 2024

IBM Jazz Foundation 7.0.2 and 7.0.3 could allow a user to change their dashboard using a... Moderate Unreviewed

CVE-2023-26280 was published Nov 25, 2024

A vulnerability, which was classified as critical, has been found in 1000 Projects Beauty Parlour... Moderate Unreviewed

CVE-2024-11647 was published Nov 25, 2024

A vulnerability has been found in 1000 Projects Beauty Parlour Management System 1.0 and... Moderate Unreviewed

CVE-2024-11649 was published Nov 25, 2024

A vulnerability, which was classified as critical, was found in 1000 Projects Beauty Parlour... Moderate Unreviewed

CVE-2024-11648 was published Nov 25, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-7130 was published Nov 25, 2024

rustls network-reachable panic in `Acceptor::accept` Moderate

GHSA-qg5g-gv98-5ffh was published for rustls (Rust) Nov 25, 2024

Improper control of framework service permissions with possibility of some sensitive device... Moderate Unreviewed

CVE-2020-12491 was published Nov 25, 2024

A vulnerability was found in welliamcao OpsManage 3.0.1/3.0.2/3.0.3/3.0.4/3.0.5. It has been... Moderate Unreviewed

CVE-2024-11662 was published Nov 25, 2024

IPP software prior to v1.71 is vulnerable to default credential vulnerability. This could lead... Moderate Unreviewed

CVE-2022-33862 was published Nov 25, 2024

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by... Moderate Unreviewed

CVE-2024-11663 was published Nov 25, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

118,058 advisories