GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,067
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,624
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
830 advisories
Filter by severity
Microsoft Excel Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-30042
was published
May 14, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-30044
was published
May 14, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, has been found...
Moderate
Unreviewed
CVE-2024-4699
was published
May 14, 2024
Deserialization of Untrusted Data vulnerability in BdThemes Ultimate Store Kit Elementor Addons...
Moderate
Unreviewed
CVE-2024-4606
was published
May 14, 2024
A deserialization of untrusted data vulnerability exists in common code used by FlexLogger and...
High
Unreviewed
CVE-2024-4044
was published
May 14, 2024
Deserialization of Untrusted Data vulnerability in OCDI One Click Demo Import.This issue affects...
Moderate
Unreviewed
CVE-2024-34433
was published
May 14, 2024
Due to an unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server...
Critical
Unreviewed
CVE-2024-29212
was published
May 14, 2024
The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2024-28075
was published
May 14, 2024
The IBM SDK, Java Technology Edition's Object Request Broker (ORB) 7.1.0.0 through 7.1.5.21 and 8...
Moderate
Unreviewed
CVE-2023-38264
was published
May 14, 2024
Dell PowerProtect DM5500 version 5.15.0.0 and prior contains an insecure deserialization...
Low
Unreviewed
CVE-2024-22460
was published
May 8, 2024
Voltronic Power ViewPower Deserialization of Untrusted Data Remote Code Execution Vulnerability....
Critical
Unreviewed
CVE-2023-51576
was published
May 3, 2024
Inductive Automation Ignition ModuleInvoke Deserialization of Untrusted Data Remote Code...
High
Unreviewed
CVE-2023-50218
was published
May 3, 2024
Inductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data...
High
Unreviewed
CVE-2023-50222
was published
May 3, 2024
Inductive Automation Ignition ResponseParser SerializedResponse Deserialization of Untrusted Data...
High
Unreviewed
CVE-2023-50221
was published
May 3, 2024
Inductive Automation Ignition RunQuery Deserialization of Untrusted Data Remote Code Execution...
High
Unreviewed
CVE-2023-50219
was published
May 3, 2024
Inductive Automation Ignition Base64Element Deserialization of Untrusted Data Remote Code...
High
Unreviewed
CVE-2023-50220
was published
May 3, 2024
Inductive Automation Ignition ExtendedDocumentCodec Deserialization of Untrusted Data Remote Code...
High
Unreviewed
CVE-2023-50223
was published
May 3, 2024
Inductive Automation Ignition ParameterVersionJavaSerializationCodec Deserialization of Untrusted...
Critical
Unreviewed
CVE-2023-39475
was published
May 3, 2024
Inductive Automation Ignition JavaSerializationCodec Deserialization of Untrusted Data Remote...
Critical
Unreviewed
CVE-2023-39476
was published
May 3, 2024
Inductive Automation Ignition AbstractGatewayFunction Deserialization of Untrusted Data Remote...
High
Unreviewed
CVE-2023-39473
was published
May 3, 2024
Deserialization of untrusted data can occur in the R statistical programming language, on any...
High
Unreviewed
CVE-2024-27322
was published
Apr 29, 2024
Deserialization of Untrusted Data vulnerability in 8theme XStore Core.This issue affects XStore...
Critical
Unreviewed
CVE-2024-33553
was published
Apr 29, 2024
Deserialization of Untrusted Data vulnerability in Team Yoast Custom field finder.This issue...
Moderate
Unreviewed
CVE-2024-33641
was published
Apr 29, 2024
Deserialization of Untrusted Data vulnerability in WebToffee Import Export WordPress Users.This...
Moderate
Unreviewed
CVE-2024-32835
was published
Apr 24, 2024
Deserialization of Untrusted Data vulnerability in Import and export users and customers.This...
Moderate
Unreviewed
CVE-2024-32817
was published
Apr 24, 2024
ProTip!
Advisories are also available from the
GraphQL API