GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,067
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,624
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
830 advisories
Filter by severity
Microsoft SharePoint Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38024
was published
Jul 9, 2024
A vulnerability has been identified in SIMATIC STEP 7 Safety V16 (All versions < V16 Update 7),...
High
Unreviewed
CVE-2023-32735
was published
Jul 9, 2024
A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP 7 V16 ...
High
Unreviewed
CVE-2022-45147
was published
Jul 9, 2024
A vulnerability has been identified in SIMATIC STEP 7 Safety V18 (All versions < V18 Update 2)....
High
Unreviewed
CVE-2023-32737
was published
Jul 9, 2024
Deserialization of Untrusted Data vulnerability in wpweb WooCommerce Social Login.This issue...
Moderate
Unreviewed
CVE-2024-37502
was published
Jul 9, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 up to 20230922. It...
Moderate
Unreviewed
CVE-2024-6525
was published
Jul 5, 2024
A vulnerability was found in ORIPA up to 1.72. It has been declared as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-6441
was published
Jul 2, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user...
High
Unreviewed
CVE-2024-36984
was published
Jul 1, 2024
In WhatsUp Gold versions released before 2023.1.3, Distributed Edition installations can be...
High
Unreviewed
CVE-2024-5016
was published
Jun 25, 2024
Deserialization of Untrusted Data vulnerability in Live Composer Team Page Builder: Live Composer...
High
Unreviewed
CVE-2024-35780
was published
Jun 19, 2024
The Photo Video Gallery Master plugin for WordPress is vulnerable to PHP Object Injection in all...
High
Unreviewed
CVE-2024-5724
was published
Jun 19, 2024
The Universal Slider plugin for WordPress is vulnerable to PHP Object Injection in all versions...
Moderate
Unreviewed
CVE-2024-5649
was published
Jun 19, 2024
Insecure Deserialization in some workflows of the IPS Manager allows unauthenticated remote...
Critical
Unreviewed
CVE-2024-5671
was published
Jun 14, 2024
The CoDesigner WooCommerce Builder for Elementor – Customize Checkout, Shop, Email, Products &...
Critical
Unreviewed
CVE-2024-4371
was published
Jun 13, 2024
There is a vulnerability in AVEVA PI Asset Framework Client that could allow malicious code to...
Unknown
Unreviewed
CVE-2024-3467
was published
Jun 12, 2024
There is a vulnerability in AVEVA PI Web API that could allow malicious code to execute on the PI...
Unknown
Unreviewed
CVE-2024-3468
was published
Jun 12, 2024
Dell Common Event Enabler, version 8.9.10.0 and prior, contain an insecure deserialization...
High
Unreviewed
CVE-2024-28964
was published
Jun 12, 2024
Microsoft Dynamics 365 Business Central Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-35249
was published
Jun 11, 2024
Untrusted data deserialization vulnerability has been found in Mentor - Employee Portal,...
Critical
Unreviewed
CVE-2024-5675
was published
Jun 6, 2024
Justice AV Solutions Viewer Setup 8.3.7.250-1 contains a malicious binary when executed and is...
High
Unreviewed
CVE-2024-4978
was published
May 23, 2024
OpenBD 20210306203917-6cbe797 is vulnerable to Deserialization of Untrusted Data. The cookies...
Low
Unreviewed
CVE-2024-34274
was published
May 21, 2024
IBM i 7.2, 7.3, and 7.4 could allow a remote attacker to execute arbitrary code leading to a...
High
Unreviewed
CVE-2024-31879
was published
May 18, 2024
Deserialization of Untrusted Data vulnerability in WebToffee Order Export & Order Import for...
Moderate
Unreviewed
CVE-2024-34751
was published
May 16, 2024
Remote Code
Execution has been discovered in
OpenText™ iManager 3.2.6.0200. The vulnerability can...
High
Unreviewed
CVE-2024-3967
was published
May 15, 2024
In Progress® Telerik® Reporting versions prior to 2024 Q2 (18.1.24.2.514), a code execution...
High
Unreviewed
CVE-2024-4200
was published
May 15, 2024
ProTip!
Advisories are also available from the
GraphQL API