GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,067
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,624
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,281 advisories
Filter by severity
A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been classified as...
Moderate
Unreviewed
CVE-2024-8089
was published
Aug 23, 2024
The Versa Director GUI provides an option to customize the look and feel of the user interface....
Moderate
Unreviewed
CVE-2024-39717
was published
Aug 22, 2024
Kashipara Hotel Management System v1.0 is vulnerable to Unrestricted File Upload RCE via /admin...
High
Unreviewed
CVE-2024-42767
was published
Aug 22, 2024
The AcyMailing – An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress...
High
Unreviewed
CVE-2024-7384
was published
Aug 22, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=save_playlist" in...
High
Unreviewed
CVE-2024-42778
was published
Aug 21, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=signup" of...
Critical
Unreviewed
CVE-2024-42777
was published
Aug 21, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=save_genre" in...
High
Unreviewed
CVE-2024-42780
was published
Aug 21, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=save_music" in...
High
Unreviewed
CVE-2024-42779
was published
Aug 21, 2024
An arbitrary file upload vulnerability in ERP commit 44bd04 allows attackers to execute arbitrary...
Critical
Unreviewed
CVE-2024-42563
was published
Aug 20, 2024
The AdRotate Banner Manager – The only ad manager you'll need plugin for WordPress is vulnerable...
High
Unreviewed
CVE-2022-1206
was published
Aug 20, 2024
A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-7944
was published
Aug 20, 2024
A vulnerability was found in itsourcecode Laravel Property Management System 1.0 and classified...
Moderate
Unreviewed
CVE-2024-7943
was published
Aug 20, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Bit Apps Bit Form Pro allows...
Critical
Unreviewed
CVE-2024-43249
was published
Aug 19, 2024
A vulnerability, which was classified as critical, has been found in DouPHP 1.7 Release 20220822....
Moderate
Unreviewed
CVE-2024-7917
was published
Aug 19, 2024
A vulnerability was found in CodeAstro Online Railway Reservation System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-7910
was published
Aug 18, 2024
A vulnerability classified as critical was found in DedeBIZ 6.3.0. This vulnerability affects the...
Moderate
Unreviewed
CVE-2024-7906
was published
Aug 18, 2024
A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function...
Moderate
Unreviewed
CVE-2024-7905
was published
Aug 18, 2024
A vulnerability was found in DedeBIZ 6.3.0. It has been rated as critical. Affected by this issue...
Moderate
Unreviewed
CVE-2024-7904
was published
Aug 18, 2024
A vulnerability was found in DedeBIZ 6.3.0. It has been declared as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-7903
was published
Aug 18, 2024
The Metform Elementor Contact Form Builder for WordPress is vulnerable to Arbitrary File Upload...
High
Unreviewed
CVE-2023-0714
was published
Aug 17, 2024
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows...
High
Unreviewed
CVE-2024-42676
was published
Aug 15, 2024
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an...
Critical
Unreviewed
CVE-2024-39397
was published
Aug 14, 2024
The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to arbitrary file...
High
Unreviewed
CVE-2024-4389
was published
Aug 14, 2024
Dr.ID Access Control System from SECOM does not properly validate a specific page parameter,...
Critical
Unreviewed
CVE-2024-7732
was published
Aug 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in BerqWP allows Code Injection...
Critical
Unreviewed
CVE-2024-43160
was published
Aug 13, 2024
ProTip!
Advisories are also available from the
GraphQL API