GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
230,831 advisories
Filter by severity
A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1....
Moderate
Unreviewed
CVE-2024-10141
was published
Oct 19, 2024
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-10137
was published
Oct 19, 2024
A vulnerability, which was classified as critical, has been found in code-projects Pharmacy...
Moderate
Unreviewed
CVE-2024-10140
was published
Oct 19, 2024
A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0....
Moderate
Unreviewed
CVE-2024-10139
was published
Oct 19, 2024
A vulnerability classified as critical has been found in code-projects Pharmacy Management System...
Moderate
Unreviewed
CVE-2024-10138
was published
Oct 19, 2024
A vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is...
Moderate
Unreviewed
CVE-2024-10134
was published
Oct 19, 2024
The StreamWeasels Twitch Integration plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-9897
was published
Oct 19, 2024
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared...
Moderate
Unreviewed
CVE-2024-10136
was published
Oct 19, 2024
A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. This affects the...
Moderate
Unreviewed
CVE-2024-10135
was published
Oct 19, 2024
The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Sensitive...
Moderate
Unreviewed
CVE-2024-9889
was published
Oct 19, 2024
The EventON PRO - WordPress Virtual Event Calendar Plugin plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2023-6243
was published
Oct 19, 2024
A vulnerability has been found in ESAFENET CDG 5 and classified as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-10133
was published
Oct 19, 2024
The WordPress Social Share Buttons plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-9219
was published
Oct 19, 2024
The Photo Gallery Slideshow & Masonry Tiled Gallery plugin for WordPress is vulnerable to SQL...
Moderate
Unreviewed
CVE-2019-25218
was published
Oct 19, 2024
The `add_llm` function in `llm_app.py` in infiniflow/ragflow version 0.11.0 contains a remote...
Critical
Unreviewed
CVE-2024-10131
was published
Oct 19, 2024
Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are...
High
Unreviewed
CVE-2024-21536
was published
Oct 19, 2024
Insufficient policy enforcement in Navigation in Google Chrome prior to 85.0.4183.83 allowed a...
Moderate
Unreviewed
CVE-2020-36765
was published
Jul 17, 2024
The WP 2FA with Telegram plugin for WordPress is vulnerable to Two-Factor Authentication Bypass...
Moderate
Unreviewed
CVE-2024-9820
was published
Oct 15, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability
Moderate
Unreviewed
CVE-2024-43577
was published
Oct 19, 2024
Improper Input Validation in the admin portal of Ivanti Connect Secure before 22.7R2.1 and 9.1R18...
Critical
Unreviewed
CVE-2024-37404
was published
Oct 19, 2024
A vulnerability classified as critical was found in Tenda AC8 16.03.34.06. This vulnerability...
High
Unreviewed
CVE-2024-10130
was published
Oct 19, 2024
A vulnerability classified as critical has been found in HFO4 shudong-share up to 2.4.7. This...
Moderate
Unreviewed
CVE-2024-10129
was published
Oct 19, 2024
Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with...
High
Unreviewed
CVE-2024-29821
was published
Oct 19, 2024
Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with...
High
Unreviewed
CVE-2024-29213
was published
Oct 19, 2024
MariaDB v10.5 was discovered to contain a remote code execution (RCE) vulnerability.
Critical
Unreviewed
CVE-2023-26785
was published
Oct 18, 2024
ProTip!
Advisories are also available from the
GraphQL API