GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,965
Erlang
29
GitHub Actions
16
Go
1,747
Maven
4,975
npm
3,507
NuGet
609
pip
3,072
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+
93,383 advisories
Filter by severity
A vulnerability in the default configuration of the Simple Network
Management Protocol (SNMP)...
High
Unreviewed
CVE-2024-5460
was published
Jun 26, 2024
The WP Cookie Consent ( for GDPR, CCPA & ePrivacy ) plugin for WordPress is vulnerable to Stored...
High
Unreviewed
CVE-2024-4869
was published
Jun 26, 2024
pdoc embeds link to malicious CDN if math mode is enabled
High
GHSA-5vgj-ggm4-fg62
was published
for
pdoc
(pip)
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, there is a missing authentication...
High
Unreviewed
CVE-2024-5012
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Denial of Service
...
High
Unreviewed
CVE-2024-5013
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, a Server Side Request Forgery vulnerability...
High
Unreviewed
CVE-2024-5014
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an authenticated SSRF vulnerability in Wug.UI...
High
Unreviewed
CVE-2024-5015
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, Distributed Edition installations can be...
High
Unreviewed
CVE-2024-5016
was published
Jun 25, 2024
A Path Traversal and Remote File Inclusion (RFI) vulnerability exists in the parisneo/lollms...
High
Unreviewed
CVE-2024-4498
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3,
an authenticated user with certain...
High
Unreviewed
CVE-2024-5008
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, a vulnerability exists in the TestController...
High
Unreviewed
CVE-2024-5010
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an uncontrolled resource consumption...
High
Unreviewed
CVE-2024-5011
was published
Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, an Improper Access Control vulnerability in...
High
Unreviewed
CVE-2024-5009
was published
Jun 25, 2024
A security vulnerability has been identified in HPE Athonet Mobile Core software. The core...
High
Unreviewed
CVE-2024-6206
was published
Jun 25, 2024
A vulnerability was found in itsourcecode Simple Online Hotel Reservation System 1.0. It has been...
High
Unreviewed
CVE-2024-6308
was published
Jun 25, 2024
pgAdmin <= 8.8 has an installation Directory permission issue. Because of this issue, attackers...
High
Unreviewed
CVE-2024-6238
was published
Jun 25, 2024
HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation
High
CVE-2024-6257
was published
for
github.com/hashicorp/go-getter
(Go)
Jun 25, 2024
Aimeos HTML client may potentially reveal sensitive information in error log
High
CVE-2024-38516
was published
for
aimeos/ai-client-html
(Composer)
Jun 25, 2024
Improper Authentication vulnerability in Progress MOVEit Transfer (SFTP module) can lead to...
High
Unreviewed
CVE-2024-5806
was published
Jun 25, 2024
Lack of privilege checking when processing a redaction in Conduit versions v0.6.0 and lower,...
High
Unreviewed
CVE-2024-6302
was published
Jun 25, 2024
A leftover debug code vulnerability exists in the cli_server debug functionality of Tp-Link...
High
Unreviewed
CVE-2024-21827
was published
Jun 25, 2024
A vulnerability in mintplex-labs/anything-llm allows for a Denial of Service (DoS) condition due...
High
Unreviewed
CVE-2024-5216
was published
Jun 25, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable...
High
Unreviewed
CVE-2024-4639
was published
Jun 25, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable...
High
Unreviewed
CVE-2024-4640
was published
Jun 25, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable...
High
Unreviewed
CVE-2024-4638
was published
Jun 25, 2024
ProTip!
Advisories are also available from the
GraphQL API