GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
104,538 advisories
Filter by severity
An Incorrect Access Control vulnerability was found in /music/ajax.php?action=delete_genre in...
Moderate
Unreviewed
CVE-2024-42796
was published
Sep 16, 2024
Kashipara Music Management System v1.0 is vulnerable to Incorrect Access Control via /music/ajax...
Moderate
Unreviewed
CVE-2024-42794
was published
Sep 16, 2024
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user...
Moderate
Unreviewed
CVE-2024-36247
was published
Sep 16, 2024
Improper input validation in some Intel(R) RAID Web Console software all versions may allow an...
Moderate
Unreviewed
CVE-2024-34545
was published
Sep 16, 2024
Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow...
Moderate
Unreviewed
CVE-2024-34153
was published
Sep 16, 2024
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated...
Moderate
Unreviewed
CVE-2024-33848
was published
Sep 16, 2024
Improper access control in Intel(R) RAID Web Console software for all versions may allow an...
Moderate
Unreviewed
CVE-2024-34543
was published
Sep 16, 2024
Improper conditions check in some Intel(R) Processors with Intel(R) SGX may allow a privileged...
Moderate
Unreviewed
CVE-2023-43753
was published
Sep 16, 2024
Out-of-bounds write in UEFI firmware for some Intel(R) Processors may allow a privileged user to...
Moderate
Unreviewed
CVE-2023-22351
was published
Sep 16, 2024
NULL pointer dereference in the UEFI firmware for some Intel(R) Processors may allow a privileged...
Moderate
Unreviewed
CVE-2023-23904
was published
Sep 16, 2024
Improper finite state machines (FSMs) in hardware logic in some Intel(R) Processors may allow an...
Moderate
Unreviewed
CVE-2024-24968
was published
Sep 16, 2024
Observable discrepancy in RAPL interface for some Intel(R) Processors may allow a privileged user...
Moderate
Unreviewed
CVE-2024-23984
was published
Sep 16, 2024
NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an...
Moderate
Unreviewed
CVE-2024-32666
was published
Sep 16, 2024
Improper access control in Intel(R) RAID Web Console software for all versions may allow an...
Moderate
Unreviewed
CVE-2024-32940
was published
Sep 16, 2024
IBM Aspera Shares 1.0 through 1.10.0 PL3 does not invalidate session after a password reset which...
Moderate
Unreviewed
CVE-2024-38315
was published
Sep 16, 2024
The MiCard PLUS Ci and MiCard PLUS BLE reader products developed by rf IDEAS and rebranded by NT...
Moderate
Unreviewed
CVE-2024-1578
was published
Sep 16, 2024
OMFLOW from The SYSCOM Group does not properly restrict the query range of its data query...
Moderate
Unreviewed
CVE-2024-8780
was published
Sep 16, 2024
SmartRobot from INTUMIT does not properly validate a specific page parameter, allowing...
Moderate
Unreviewed
CVE-2024-8776
was published
Sep 16, 2024
Mattermost Mobile Apps versions <=2.18.0 fail to disable autocomplete during login while typing...
Moderate
Unreviewed
CVE-2024-45833
was published
Sep 16, 2024
A vulnerability classified as critical was found in vedees wcms up to 0.3.2. Affected by this...
Moderate
Unreviewed
CVE-2024-8875
was published
Sep 16, 2024
OMFLOW from The SYSCOM Group does not properly validate user input of the download functionality,...
Moderate
Unreviewed
CVE-2024-8778
was published
Sep 16, 2024
A vulnerability classified as critical has been found in playSMS 1.4.4/1.4.5/1.4.6/1.4.7....
Moderate
Unreviewed
CVE-2024-8880
was published
Sep 16, 2024
A vulnerability, which was classified as problematic, has been found in xiaohe4966 TpMeCMS up to...
Moderate
Unreviewed
CVE-2024-8876
was published
Sep 16, 2024
A vulnerability was found in code-projects Crud Operation System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-8868
was published
Sep 16, 2024
A vulnerability was found in Perfex CRM 3.1.6. It has been declared as problematic. This...
Moderate
Unreviewed
CVE-2024-8867
was published
Sep 16, 2024
ProTip!
Advisories are also available from the
GraphQL API