Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,394 advisories

Loading
FileManager Deserialization of Untrusted Data vulnerability High
CVE-2024-52306 was published for backpack/filemanager (Composer) Nov 13, 2024
In Progress Telerik UI for WinForms versions prior to 2024 Q4 (2024.4.1113), a code execution... High Unreviewed
CVE-2024-10013 was published Nov 13, 2024
In Progress Telerik UI for WPF versions prior to 2024 Q4 (2024.4.1111), a code execution attack... High Unreviewed
CVE-2024-10012 was published Nov 13, 2024
The Advanced Order Export For WooCommerce plugin for WordPress is vulnerable to PHP Object... High Unreviewed
CVE-2024-10828 was published Nov 13, 2024
Limited remote code execution with privilege of a NetworkService Account access in Citrix Session... Moderate Unreviewed
CVE-2024-8069 was published Nov 12, 2024
A vulnerability has been identified in PP TeleControl Server Basic 1000 to 5000 V3.1 (6NH9910... Critical Unreviewed
CVE-2024-44102 was published Nov 12, 2024
A vulnerability has been identified in SIMATIC S7-PLCSIM V16 (All versions), SIMATIC S7-PLCSIM... High Unreviewed
CVE-2023-32736 was published Nov 12, 2024
XStream is vulnerable to a Denial of Service attack due to stack overflow from a manipulated binary input stream High
CVE-2024-47072 was published for com.thoughtworks.xstream:xstream (Maven) Nov 7, 2024
DarkaMaul
A vulnerability, which was classified as critical, was found in ThinkAdmin up to 6.1.67. Affected... Low Unreviewed
CVE-2024-10749 was published Nov 4, 2024
Apache Lucene.Net.Replicator Deserialization of Untrusted Data vulnerability High
CVE-2024-43383 was published for Lucene.Net.Replicator (NuGet) Oct 31, 2024
ThinkPHP deserialization vulnerability High
CVE-2024-48112 was published for topthink/thinkphp (Composer) Oct 30, 2024
Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a... Critical Unreviewed
CVE-2024-10456 was published Oct 30, 2024
Deserialization of Untrusted Data vulnerability in Daniel Schmitzer DS.DownloadList allows Object... Critical Unreviewed
CVE-2024-50507 was published Oct 30, 2024
A Deserialization of Untrusted Data vulnerability in chainer v7.8.1.post1 leads to execution of... Critical Unreviewed
CVE-2024-48206 was published Oct 29, 2024
In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. Critical Unreviewed
CVE-2024-48063 was published Oct 29, 2024
Deserialization of Untrusted Data vulnerability in Kiboko Labs Namaste! LMS allows Object... High Unreviewed
CVE-2024-50408 was published Oct 28, 2024
Deserialization of Untrusted Data vulnerability in WPClever WPC Shop as a Customer for... High Unreviewed
CVE-2024-50416 was published Oct 28, 2024
Deserialization of Untrusted Data vulnerability in Revmakx Backup and Staging by WP Time Capsule... High Unreviewed
CVE-2024-49684 was published Oct 23, 2024
Deserialization of Untrusted Data vulnerability in Brandon Clark SiteBuilder Dynamic Components... Critical Unreviewed
CVE-2024-49625 was published Oct 20, 2024
Deserialization of Untrusted Data vulnerability in Smartdevth Advanced Advertising System allows... Critical Unreviewed
CVE-2024-49624 was published Oct 20, 2024
Deserialization of Untrusted Data vulnerability in Piyushmca Shipyaari Shipping Management allows... Critical Unreviewed
CVE-2024-49626 was published Oct 20, 2024
Deserialization of Untrusted Data vulnerability in Giveaway Boost allows Object Injection.This... Critical Unreviewed
CVE-2024-49332 was published Oct 20, 2024
The WP Easy Post Types plugin for WordPress is vulnerable to PHP Object Injection in versions up... High Unreviewed
CVE-2024-10079 was published Oct 18, 2024
Deserialization of Untrusted Data vulnerability in Scott Olson My Reading Library allows Object... Critical Unreviewed
CVE-2024-49318 was published Oct 17, 2024
Admidio Vulnerable to HTML Injection In The Messages Section Low
CVE-2024-47836 was published for admidio/admidio (Composer) Oct 16, 2024
Kakashi1234
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database