Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

93,859 advisories

Loading
A vulnerability, which was classified as critical, has been found in code-projects Library... High Unreviewed
CVE-2023-7110 was published Feb 29, 2024
bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after... High Unreviewed
CVE-2023-51779 was published Feb 29, 2024
An issue was discovered in Couchbase Server before 7.2.x before 7.2.4. otpCookie is shown with... High Unreviewed
CVE-2023-50437 was published Feb 29, 2024
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 allows the attacker... High Unreviewed
CVE-2023-25921 was published Feb 29, 2024
An issue was discovered in RWS WorldServer before 11.7.3. An authenticated, remote attacker can... High Unreviewed
CVE-2022-34269 was published Feb 29, 2024
Cross-site request forgery (CSRF) vulnerability in ELECOM wireless LAN routers allows a remote... High Unreviewed
CVE-2024-23910 was published Feb 29, 2024
An Unrestricted File Upload vulnerability in CodeAstro Membership Management System in PHP v.1.0... High Unreviewed
CVE-2024-25869 was published Feb 29, 2024
A SQL Injection vulnerability in CodeAstro Membership Management System in PHP v.1.0 allows a... High Unreviewed
CVE-2024-25866 was published Feb 29, 2024
Couchbase Server 7.1.x and 7.2.x before 7.2.4 does not require authentication for the /admin... High Unreviewed
CVE-2023-49338 was published Feb 29, 2024
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow a remote... High Unreviewed
CVE-2023-25925 was published Feb 29, 2024
A path traversal vulnerability in the /path/to/uploads/ directory of Blesta before v5.9.2 allows... High Unreviewed
CVE-2024-25859 was published Feb 28, 2024
A memory leak issue discovered in parseSWF_FREECHARACTER in libming v0.4.8 allows attackers to... High Unreviewed
CVE-2024-24148 was published Feb 28, 2024
Dedecms v5.7.112 was discovered to contain a Cross-Site Request Forgery (CSRF) in the file manager. High Unreviewed
CVE-2023-52047 was published Feb 28, 2024
A Null pointer dereference in usr/sbin/httpd in ASUS AC68U 3.0.0.4.384.82230 allows remote... High Unreviewed
CVE-2024-26342 was published Feb 28, 2024
Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack... High Unreviewed
CVE-2024-1847 was published Feb 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-25902 was published Feb 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-24868 was published Feb 28, 2024
Osclass 5.1.2 is vulnerable to SQL Injection. High Unreviewed
CVE-2024-27515 was published Feb 28, 2024
A heap buffer overflow flaw was found in the DisableDevice function in the X.Org server. This... High Unreviewed
CVE-2024-21886 was published Feb 28, 2024
A flaw was found in X.Org server. In the XISendDeviceHierarchyEvent function, it is possible to... High Unreviewed
CVE-2024-21885 was published Feb 28, 2024
Potential Cross-Site Scripting (XSS) in the page editing area. High Unreviewed
CVE-2024-1636 was published Feb 28, 2024
Low-privileged users with access to the Sitefinity backend may obtain sensitive information from... High Unreviewed
CVE-2024-1632 was published Feb 28, 2024
The Conversios – Google Analytics 4 (GA4), Meta Pixel & more Via Google Tag Manager For... High Unreviewed
CVE-2024-0786 was published Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved: iommu/mediatek: Always... High Unreviewed
CVE-2021-47025 was published Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: fix txrate... High Unreviewed
CVE-2021-47028 was published Feb 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database