Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

256,269 advisories

Loading
An issue was discovered in MBed OS 6.16.0. When parsing hci reports, the hci parsing software... Critical Unreviewed
CVE-2024-48984 was published Nov 20, 2024
A Client-Side Template Injection (CSTI) vulnerability in the component /project/new/scrum of... Unknown Unreviewed
CVE-2024-53554 was published Nov 26, 2024
In the Linux kernel, the following vulnerability has been resolved: mm: krealloc: Fix MTE false... Unknown Unreviewed
CVE-2024-53097 was published Nov 26, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Check validity of link-... Unknown Unreviewed
CVE-2024-53099 was published Nov 26, 2024
In the Linux kernel, the following vulnerability has been resolved: mm: resolve faulty... Unknown Unreviewed
CVE-2024-53096 was published Nov 26, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/xe/ufence: Prefetch... Unknown Unreviewed
CVE-2024-53098 was published Nov 26, 2024
A vulnerability, which was classified as problematic, has been found in 1000 Projects Bookstore... Moderate Unreviewed
CVE-2024-11673 was published Nov 26, 2024
In the Linux kernel, the following vulnerability has been resolved: nvme: tcp: avoid race... Unknown Unreviewed
CVE-2024-53100 was published Nov 26, 2024
masterstack_imgcap v0.0.1 was discovered to contain a SQL injection vulnerability via the... Unknown Unreviewed
CVE-2024-53597 was published Nov 26, 2024
TOTOLINK EX200 v4.0.3c.7646_B20201211 was found to contain a command insertion vulnerability in... Moderate Unreviewed
CVE-2024-53333 was published Nov 26, 2024
In the Linux kernel, the following vulnerability has been resolved: nvme: make keep-alive... Unknown Unreviewed
CVE-2024-53102 was published Nov 26, 2024
In the Linux kernel, the following vulnerability has been resolved: fs: Fix uninitialized value... Unknown Unreviewed
CVE-2024-53101 was published Nov 26, 2024
A vulnerability, which was classified as critical, was found in CodeAstro Hospital Management... Moderate Unreviewed
CVE-2024-11674 was published Nov 26, 2024
BlueCMS 1.6 suffers from Arbitrary File Deletion via the file_name parameter in an /admin... Moderate Unreviewed
CVE-2024-45894 was published Oct 7, 2024
An issue in Annonshop.app DecentralizeJustice/anonymousLocker commit 2b2b4 to ba9fd and... Moderate Unreviewed
CVE-2024-36589 was published Jun 13, 2024
An issue was discovered in Couchbase Server through 7.1.4 before 7.1.5 and before 7.2.1. There... Moderate Unreviewed
CVE-2023-43769 was published Feb 29, 2024
aiocpa contains credential harvesting code High
GHSA-486g-47cc-8wxf was published for aiocpa (pip) Nov 25, 2024
@sveltejs/kit vulnerable to on dev mode 404 page Low
CVE-2024-53261 was published for @sveltejs/kit (npm) Nov 25, 2024
benmccann eltigerchino
@sveltejs/kit has unescaped error message included on error page Low
CVE-2024-53262 was published for @sveltejs/kit (npm) Nov 25, 2024
dominikg eltigerchino
benmccann
Cilium's Layer 7 policy enforcement may not occur in policies with wildcarded port ranges Moderate
CVE-2024-52529 was published for github.com/cilium/cilium (Go) Nov 25, 2024
deno_doc's HTML generator vulnerable to Cross-site Scripting Low
CVE-2024-32468 was published for deno_doc (Rust) Nov 25, 2024
NeKzor
Jenkins item creation restriction bypass vulnerability Moderate
CVE-2024-47804 was published for org.jenkins-ci.main:jenkins-core (Maven) Oct 2, 2024
The YaDisk Files WordPress plugin through 1.2.5 does not validate and escape some of its... Moderate Unreviewed
CVE-2024-10709 was published Nov 25, 2024
IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-11543 was published Nov 22, 2024
IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-11541 was published Nov 22, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database