GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
90,416 advisories
Filter by severity
The Social Web Suite – Social Media Auto Post, Social Media Auto Publish plugin for WordPress is...
High
Unreviewed
CVE-2024-8352
was published
Oct 3, 2024
Out-of-bounds write vulnerability exists in Kostac PLC Programming Software (Former name: Koyo...
High
Unreviewed
CVE-2024-47134
was published
Oct 3, 2024
Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software (Former name:...
High
Unreviewed
CVE-2024-47135
was published
Oct 3, 2024
Out-of-bounds read vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC...
High
Unreviewed
CVE-2024-47136
was published
Oct 3, 2024
A use-after-free vulnerability exists in the way Foxit Reade 2024.1.0.23997 handles a checkbox ...
High
Unreviewed
CVE-2024-28888
was published
Oct 2, 2024
A potential security vulnerability
has been identified in the HP One Agent for certain HP PC...
High
Unreviewed
CVE-2024-8733
was published
Oct 2, 2024
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z...
High
Unreviewed
CVE-2024-20499
was published
Oct 2, 2024
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z...
High
Unreviewed
CVE-2024-20501
was published
Oct 2, 2024
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z...
High
Unreviewed
CVE-2024-20498
was published
Oct 2, 2024
OS4ED openSIS-Classic v9.1 was discovered to contain a SQL injection vulnerability via a crafted...
High
Unreviewed
CVE-2024-46626
was published
Oct 2, 2024
A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an authenticated,...
High
Unreviewed
CVE-2024-20449
was published
Oct 2, 2024
FlatPress CMS v1.3.1 1.3 was discovered to use insecure methods to store authentication data via...
High
Unreviewed
CVE-2024-41290
was published
Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W,...
High
Unreviewed
CVE-2024-20393
was published
Oct 2, 2024
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device...
High
Unreviewed
CVE-2024-8885
was published
Oct 2, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-44030
was published
Oct 2, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-44017
was published
Oct 2, 2024
The WP Hotel Booking plugin for WordPress is vulnerable to arbitrary file uploads due to missing...
High
Unreviewed
CVE-2024-7855
was published
Oct 2, 2024
The Migration, Backup, Staging WordPress plugin before 0.9.106 does not use sufficient...
High
Unreviewed
CVE-2024-7315
was published
Oct 2, 2024
Scriptcase v9.10.023 and before is vulnerable to Remote Code Execution (RCE) via the nm_zip...
High
Unreviewed
CVE-2024-46080
was published
Oct 1, 2024
Scriptcase 9.10.023 and before is vulnerable to Remote Code Execution (RCE) via the nm_unzip...
High
Unreviewed
CVE-2024-46084
was published
Oct 1, 2024
Memory safety bugs present in Firefox 130. Some of these bugs showed evidence of memory...
High
Unreviewed
CVE-2024-9403
was published
Oct 1, 2024
A potential memory corruption vulnerability could be triggered if an attacker had the ability to...
High
Unreviewed
CVE-2024-9400
was published
Oct 1, 2024
In Infinera TNMS (Transcend Network Management System) 19.10.3, an insecure default configuration...
High
Unreviewed
CVE-2024-25659
was published
Oct 1, 2024
It is currently unknown if this issue is exploitable but a condition may arise where the...
High
Unreviewed
CVE-2024-9396
was published
Oct 1, 2024
In Infinera TNMS (Transcend Network Management System) 19.10.3, cleartext storage of sensitive...
High
Unreviewed
CVE-2024-25661
was published
Oct 1, 2024
ProTip!
Advisories are also available from the
GraphQL API