Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

92,292 advisories

Loading
The Login using WordPress Users ( WP as SAML IDP ) plugin for WordPress is vulnerable to time... High Unreviewed
CVE-2024-9887 was published Nov 16, 2024
The Blogger 301 Redirect plugin for WordPress is vulnerable to blind time-based SQL Injection via... High Unreviewed
CVE-2024-10645 was published Nov 16, 2024
The WordPress Video Robot - The Ultimate Video Importer plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-9192 was published Nov 16, 2024
The 3D FlipBook, PDF Viewer, PDF Embedder – Real 3D FlipBook WordPress Plugin plugin for... High Unreviewed
CVE-2024-9849 was published Nov 16, 2024
The Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX plugin for WordPress is... High Unreviewed
CVE-2024-10728 was published Nov 16, 2024
The PDF Generator Addon for Elementor Page Builder plugin for WordPress is vulnerable to Path... High Unreviewed
CVE-2024-9935 was published Nov 16, 2024
The The Uix Slideshow plugin for WordPress is vulnerable to arbitrary shortcode execution in all... High Unreviewed
CVE-2024-9839 was published Nov 16, 2024
A maliciously crafted DLL file when placed in temporary files and folders that are leveraged by... High Unreviewed
CVE-2024-9500 was published Nov 16, 2024
An invalid memory access when handling the ENB Configuration Transfer messages containing invalid... High Unreviewed
CVE-2024-24458 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB Setup List Context SURes... High Unreviewed
CVE-2024-24457 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB Release Indication... High Unreviewed
CVE-2024-24452 was published Nov 15, 2024
An invalid memory access when handling a UE Context Release message containing an invalid UE... High Unreviewed
CVE-2024-24455 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of S1Setup Request messages in... High Unreviewed
CVE-2024-24459 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB... High Unreviewed
CVE-2024-24453 was published Nov 15, 2024
An invalid memory access when handling the ProtocolIE_ID field of E-RAB Modify Request messages... High Unreviewed
CVE-2024-24454 was published Nov 15, 2024
An issue in TOTOLINK Bluetooth Wireless Adapter A600UB allows a local attacker to execute... High Unreviewed
CVE-2024-51141 was published Nov 15, 2024
NULL pointer dereference in the MMS Client in MZ Automation LibIEC1850 before commit... High Unreviewed
CVE-2024-45969 was published Nov 15, 2024
Azure Stack HCI Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49060 was published Nov 15, 2024
IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 is vulnerable to an... High Unreviewed
CVE-2024-39726 was published Nov 15, 2024
A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. Affected by this... High Unreviewed
CVE-2024-11248 was published Nov 15, 2024
IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, and 6.1.0.0 could allow a remote... High Unreviewed
CVE-2024-41784 was published Nov 15, 2024
A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS... High Unreviewed
CVE-2022-20853 was published Nov 15, 2024
A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an... High Unreviewed
CVE-2022-20655 was published Nov 15, 2024
A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated,... High Unreviewed
CVE-2022-20649 was published Nov 15, 2024
A vulnerability in the certificate validation of Cisco Expressway-C and Cisco&nbsp... High Unreviewed
CVE-2022-20814 was published Nov 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database