GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,395
Composer 4,383
Erlang 33
GitHub Actions 22
Go 2,141
Maven 5,314
npm 3,803
NuGet 687
pip 3,479
Pub 12
RubyGems 897
Rust 898
Swift 38

Unreviewed advisories

All unreviewed 245,615

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

114,949 advisories

Filter by severity

Sort by

Least recently updated

Reflected Cross-Site Scripting (XSS) in Shift Logbook application of B&R APROL <= R 4.4-00P3 may... Moderate Unreviewed

CVE-2024-5624 was published Aug 29, 2024

The Gutentor WordPress plugin before 3.3.6 does not validate and escape some of its block... Moderate Unreviewed

CVE-2024-5417 was published Aug 29, 2024

The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-7895 was published Aug 29, 2024

Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal... Moderate Unreviewed

CVE-2024-4428 was published Aug 29, 2024

The Front End Users plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-7606 was published Aug 29, 2024

The The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid plugin for... Moderate Unreviewed

CVE-2024-7418 was published Aug 29, 2024

The WP To Do plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Comment in all... Moderate Unreviewed

CVE-2024-3944 was published Aug 29, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2024-43986 was published Aug 29, 2024

Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input... Moderate Unreviewed

CVE-2024-38303 was published Aug 29, 2024

In the Linux kernel, the following vulnerability has been resolved: tcp: add sanity tests to... Moderate Unreviewed

CVE-2021-4442 was published Aug 29, 2024

A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Music Management System... Moderate Unreviewed

CVE-2024-42793 was published Aug 28, 2024

In WS_FTP Server versions before 8.8.8 (2022.0.8), a Missing Critical Step in Multi-Factor... Moderate Unreviewed

CVE-2024-7745 was published Aug 28, 2024

In WS_FTP Server versions before 8.8.8 (2022.0.8), an Improper Limitation of a Pathname to a... Moderate Unreviewed

CVE-2024-7744 was published Aug 28, 2024

An issue in the component EXR!ReadEXR+0x40ef1 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed

CVE-2024-44913 was published Aug 28, 2024

Improper access control in the clipboard synchronization feature in TeamViewer Full Client prior... Moderate Unreviewed

CVE-2024-6053 was published Aug 28, 2024

An issue in the component EXR!ReadEXR+0x3df50 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed

CVE-2024-44914 was published Aug 28, 2024

An issue in the component EXR!ReadEXR+0x4eef0 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed

CVE-2024-44915 was published Aug 28, 2024

A SQL injection vulnerability in /smsa/admin_login.php in Kashipara Responsive School Management... Moderate Unreviewed

CVE-2024-41236 was published Aug 28, 2024

A vulnerability in the Python interpreter of Cisco NX-OS Software could allow an authenticated,... Moderate Unreviewed

CVE-2024-20284 was published Aug 28, 2024

Ruoyi v4.7.9 and before was discovered to contain a cross-site scripting (XSS) vulnerability via... Moderate Unreviewed

CVE-2024-42900 was published Aug 28, 2024

A vulnerability in the software upgrade component of Cisco Application Policy Infrastructure... Moderate Unreviewed

CVE-2024-20478 was published Aug 28, 2024

A vulnerability in Cisco NX-OS Software could allow an authenticated, local attacker with... Moderate Unreviewed

CVE-2024-20411 was published Aug 28, 2024

A vulnerability in the restricted security domain implementation of Cisco Application Policy... Moderate Unreviewed

CVE-2024-20279 was published Aug 28, 2024

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged,... Moderate Unreviewed

CVE-2024-20289 was published Aug 28, 2024

A vulnerability in Cisco NX-OS Software could allow an authenticated, local attacker with... Moderate Unreviewed

CVE-2024-20413 was published Aug 28, 2024

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

114,949 advisories