GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
18 advisories
Filter by severity
Debezium database connector has a script injection vulnerability
Moderate
CVE-2023-1419
was published
for
io.debezium:debezium-connector-mysql
(Maven)
Nov 17, 2024
Eclipse Glassfish improperly handles http parameters
Moderate
CVE-2024-9329
was published
for
org.glassfish.main.admin:rest-service
(Maven)
Sep 30, 2024
ID4Portais in version < V.2022.837.002a returns message parameter unsanitized in the response,...
Moderate
Unreviewed
CVE-2023-40819
was published
Aug 6, 2024
Inappropriate implementation in Google Updator prior to 1.3.36.351 in Google Chrome allowed a...
High
Unreviewed
CVE-2023-7261
was published
Jun 7, 2024
Cross Site Scripting vulnerability in TOTOLINK X2000R before v1.0.0-B20231213.1013 allows a...
Moderate
Unreviewed
CVE-2024-33433
was published
May 14, 2024
TOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a remote code execution (RCE)...
High
Unreviewed
CVE-2024-31808
was published
Apr 8, 2024
A vulnerability in the Unified Threat Defense (UTD) configuration CLI of Cisco IOS XE Software...
Moderate
Unreviewed
CVE-2024-20306
was published
Mar 27, 2024
An issue in EpointWebBuilder 5.1.0-sp1, 5.2.1-sp1, 5.4.1 and 5.4.2 allows a remote attacker to...
Critical
Unreviewed
CVE-2024-24525
was published
Feb 29, 2024
Improper Handling of Parameters in moodle
Moderate
CVE-2024-25979
was published
for
moodle/moodle
(Composer)
Feb 19, 2024
The Real-Time Streaming Protocol implementation in the MIB3 infotainment incorrectly handles...
Moderate
Unreviewed
CVE-2023-28898
was published
Jan 12, 2024
Resque vulnerable to Reflected Cross Site Scripting through pathnames
Moderate
CVE-2023-50724
was published
for
resque
(RubyGems)
Dec 18, 2023
Resque vulnerable to reflected XSS in resque-web failed and queues lists
Moderate
CVE-2023-50725
was published
for
resque
(RubyGems)
Dec 18, 2023
Resque vulnerable to reflected XSS in Queue Endpoint
Moderate
CVE-2023-50727
was published
for
resque
(RubyGems)
Dec 18, 2023
Improper Handling of Parameters vulnerability in Bordam Information Technologies Library...
Moderate
Unreviewed
CVE-2021-45478
was published
Mar 2, 2023
Improper Handling of Parameters vulnerability in Bordam Information Technologies Library...
Moderate
Unreviewed
CVE-2021-45477
was published
Mar 2, 2023
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The...
High
Unreviewed
CVE-2022-32261
was published
Jun 15, 2022
ProTip!
Advisories are also available from the
GraphQL API