Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,965
Erlang
29
GitHub Actions
16
Go
1,747
Maven
4,975
npm
3,507
NuGet
609
pip
3,072
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+

93,383 advisories

Loading
A vulnerability in the default configuration of the Simple Network Management Protocol (SNMP)... High Unreviewed
CVE-2024-5460 was published Jun 26, 2024
The WP Cookie Consent ( for GDPR, CCPA & ePrivacy ) plugin for WordPress is vulnerable to Stored... High Unreviewed
CVE-2024-4869 was published Jun 26, 2024
pdoc embeds link to malicious CDN if math mode is enabled High
GHSA-5vgj-ggm4-fg62 was published for pdoc (pip) Jun 25, 2024
adhintz mhils
In WhatsUp Gold versions released before 2023.1.3, there is a missing authentication... High Unreviewed
CVE-2024-5012 was published Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Denial of Service ... High Unreviewed
CVE-2024-5013 was published Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, a Server Side Request Forgery vulnerability... High Unreviewed
CVE-2024-5014 was published Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an authenticated SSRF vulnerability in Wug.UI... High Unreviewed
CVE-2024-5015 was published Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, Distributed Edition installations can be... High Unreviewed
CVE-2024-5016 was published Jun 25, 2024
A Path Traversal and Remote File Inclusion (RFI) vulnerability exists in the parisneo/lollms... High Unreviewed
CVE-2024-4498 was published Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an authenticated user with certain... High Unreviewed
CVE-2024-5008 was published Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, a vulnerability exists in the TestController... High Unreviewed
CVE-2024-5010 was published Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an uncontrolled resource consumption... High Unreviewed
CVE-2024-5011 was published Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an Improper Access Control vulnerability in... High Unreviewed
CVE-2024-5009 was published Jun 25, 2024
A security vulnerability has been identified in HPE Athonet Mobile Core software. The core... High Unreviewed
CVE-2024-6206 was published Jun 25, 2024
A vulnerability was found in itsourcecode Simple Online Hotel Reservation System 1.0. It has been... High Unreviewed
CVE-2024-6308 was published Jun 25, 2024
pgAdmin <= 8.8 has an installation Directory permission issue. Because of this issue, attackers... High Unreviewed
CVE-2024-6238 was published Jun 25, 2024
HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation High
CVE-2024-6257 was published for github.com/hashicorp/go-getter (Go) Jun 25, 2024
Aimeos HTML client may potentially reveal sensitive information in error log High
CVE-2024-38516 was published for aimeos/ai-client-html (Composer) Jun 25, 2024
ssshah2131
Improper Authentication vulnerability in Progress MOVEit Transfer (SFTP module) can lead to... High Unreviewed
CVE-2024-5806 was published Jun 25, 2024
Lack of privilege checking when processing a redaction in Conduit versions v0.6.0 and lower,... High Unreviewed
CVE-2024-6302 was published Jun 25, 2024
A leftover debug code vulnerability exists in the cli_server debug functionality of Tp-Link... High Unreviewed
CVE-2024-21827 was published Jun 25, 2024
A vulnerability in mintplex-labs/anything-llm allows for a Denial of Service (DoS) condition due... High Unreviewed
CVE-2024-5216 was published Jun 25, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable... High Unreviewed
CVE-2024-4639 was published Jun 25, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable... High Unreviewed
CVE-2024-4640 was published Jun 25, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable... High Unreviewed
CVE-2024-4638 was published Jun 25, 2024
ProTip! Advisories are also available from the GraphQL API