GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
20,611 advisories
Filter by severity
Affected devices beacon to eCharge cloud infrastructure asking if there are any command they...
Critical
Unreviewed
CVE-2024-11666
was published
Nov 25, 2024
An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24334. It...
Critical
Unreviewed
CVE-2024-53909
was published
Nov 24, 2024
An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24344. It...
Critical
Unreviewed
CVE-2024-53914
was published
Nov 24, 2024
An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24405. It...
Critical
Unreviewed
CVE-2024-53915
was published
Nov 24, 2024
An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24336. It...
Critical
Unreviewed
CVE-2024-53910
was published
Nov 24, 2024
An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24343. It...
Critical
Unreviewed
CVE-2024-53913
was published
Nov 24, 2024
An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24339. It...
Critical
Unreviewed
CVE-2024-53911
was published
Nov 24, 2024
An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24341. It...
Critical
Unreviewed
CVE-2024-53912
was published
Nov 24, 2024
The FluentSMTP – WP SMTP Plugin with Amazon SES, SendGrid, MailGun, Postmark, Google and Any SMTP...
Critical
Unreviewed
CVE-2024-9511
was published
Nov 23, 2024
The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file...
Critical
Unreviewed
CVE-2024-9659
was published
Nov 23, 2024
The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to arbitrary file...
Critical
Unreviewed
CVE-2024-9942
was published
Nov 23, 2024
The Social Login plugin for WordPress is vulnerable to authentication bypass in all versions up...
Critical
Unreviewed
CVE-2024-10961
was published
Nov 23, 2024
NVIDIA Base Command Manager contains a missing authentication vulnerability in the CMDaemon...
Critical
Unreviewed
CVE-2024-0138
was published
Nov 23, 2024
An OS Command Injection vulnerability exists within myPRO Manager. A parameter within a command...
Critical
Unreviewed
CVE-2024-52034
was published
Nov 23, 2024
The web application uses a weak authentication mechanism to verify that a request is coming from...
Critical
Unreviewed
CVE-2024-45369
was published
Nov 23, 2024
The administrative interface listens by default on all interfaces on a TCP port and does not...
Critical
Unreviewed
CVE-2024-47138
was published
Nov 23, 2024
A parameter within a command does not properly validate input within myPRO Manager which could be...
Critical
Unreviewed
CVE-2024-47407
was published
Nov 23, 2024
Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnerability. This vulnerability...
Critical
Unreviewed
CVE-2024-8806
was published
Nov 22, 2024
Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnerability. This vulnerability...
Critical
Unreviewed
CVE-2024-8807
was published
Nov 22, 2024
Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Code Execution Vulnerability....
Critical
Unreviewed
CVE-2024-6246
was published
Nov 22, 2024
Allegra saveFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability...
Critical
Unreviewed
CVE-2023-52333
was published
Nov 22, 2024
Allegra renderFieldMatch Deserialization of Unstrusted Data Remote Code Execution Vulnerability....
Critical
Unreviewed
CVE-2023-51641
was published
Nov 22, 2024
Allegra SiteConfigAction Improper Access Control Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2023-51644
was published
Nov 22, 2024
Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability....
Critical
Unreviewed
CVE-2023-51642
was published
Nov 22, 2024
A server-side request forgery (SSRF) vulnerability has been reported to affect Notes Station 3....
Critical
Unreviewed
CVE-2024-38645
was published
Nov 22, 2024
ProTip!
Advisories are also available from the
GraphQL API