Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,649
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

105,015 advisories

Loading
In Liferay Portal 7.2.0 through 7.4.3.25, and older unsupported versions, and Liferay DXP 7.4... Moderate Unreviewed
CVE-2024-26267 was published Feb 20, 2024
HtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.12, and older unsupported versions,... Moderate Unreviewed
CVE-2024-25609 was published Feb 20, 2024
HtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.18, and older unsupported versions,... Moderate Unreviewed
CVE-2024-25608 was published Feb 20, 2024
The Journal module in Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and... Moderate Unreviewed
CVE-2024-25605 was published Feb 20, 2024
Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and Liferay DXP 7.4.13, 7.3... Moderate Unreviewed
CVE-2024-25604 was published Feb 20, 2024
The Frentix GmbH OpenOlat LMS is affected by stored a Cross-Site Scripting (XSS) vulnerability.... Moderate Unreviewed
CVE-2024-25974 was published Feb 20, 2024
Liferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before... Moderate Unreviewed
CVE-2024-25149 was published Feb 20, 2024
Information disclosure vulnerability in the Control Panel in Liferay Portal 7.2.0 through 7.4.2,... Moderate Unreviewed
CVE-2024-25150 was published Feb 20, 2024
Open redirect vulnerability in adaptive media administration page in Liferay DXP 2023.Q3 before... Moderate Unreviewed
CVE-2023-44308 was published Feb 20, 2024
Open redirect vulnerability in the Countries Management’s edit region page in Liferay Portal 7.4... Moderate Unreviewed
CVE-2023-5190 was published Feb 20, 2024
The Link Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2024-1559 was published Feb 20, 2024
A null pointer dereference vulnerability in Zyxel ATP series firmware versions from 4... Moderate Unreviewed
CVE-2023-6397 was published Feb 20, 2024
The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed
CVE-2024-1510 was published Feb 20, 2024
The Node.js Permission Model does not clarify in the documentation that wildcards should be only... Moderate Unreviewed
CVE-2024-21890 was published Feb 20, 2024
A format string vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch... Moderate Unreviewed
CVE-2023-6399 was published Feb 20, 2024
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability... Moderate Unreviewed
CVE-2024-1345 was published Feb 19, 2024
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability... Moderate Unreviewed
CVE-2024-1346 was published Feb 19, 2024
Encrypted database credentials in LaborOfficeFree affecting version 19.10. This vulnerability... Moderate Unreviewed
CVE-2024-1344 was published Feb 19, 2024
A weak permission was found in the backup directory in LaborOfficeFree affecting version 19.10.... Moderate Unreviewed
CVE-2024-1343 was published Feb 19, 2024
An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame... Moderate Unreviewed
CVE-2024-1580 was published Feb 19, 2024
An issue was discovered in QEMU 7.1.0 through 8.2.1. register_vfs in hw/pci/pcie_sriov.c... Moderate Unreviewed
CVE-2024-26327 was published Feb 19, 2024
plugins/gtk+/glade-gtk-box.c in GNOME Glade before 3.38.1 and 3.39.x before 3.40.0 mishandles... Moderate Unreviewed
CVE-2020-36774 was published Feb 19, 2024
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed
CVE-2024-22337 was published Feb 17, 2024
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed
CVE-2024-22335 was published Feb 17, 2024
IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed
CVE-2023-50951 was published Feb 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database