GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,587
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,988
Maven 5,170
npm 3,704
NuGet 661
pip 3,332
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,190

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

234,190 advisories

Filter by severity

Sort by

Least recently updated

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-52381 was published Nov 14, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Softpulse Infotech Picsmize... Critical Unreviewed

CVE-2024-52380 was published Nov 14, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Sage AI Sage AI: Chatbots,... Critical Unreviewed

CVE-2024-52384 was published Nov 14, 2024

Missing Authorization vulnerability in KCT Ai Auto Tool Content Writing Assistant (Gemini Writer,... High Unreviewed

CVE-2024-52383 was published Nov 14, 2024

Missing Authorization vulnerability in Medma Technologies Matix Popup Builder allows Privilege... Critical Unreviewed

CVE-2024-52382 was published Nov 14, 2024

Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Podlove... Critical Unreviewed

CVE-2024-52393 was published Nov 14, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2024-52396 was published Nov 14, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in DoThatTask Do That Task allows... Critical Unreviewed

CVE-2024-52374 was published Nov 14, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Arttia Creative Datasets Manager... Critical Unreviewed

CVE-2024-52375 was published Nov 14, 2024

A Reflected Cross-Site Scripting (XSS) vulnerability was found in the /search-result.php page of... Unknown Unreviewed

CVE-2024-48284 was published Nov 14, 2024

A memory corruption vulnerability exists in the affected products when parsing DFT files. Local... High Unreviewed

CVE-2024-6068 was published Nov 14, 2024

A SQL Injection vulnerability was found in /admin/class.php in kashipara E-learning Management... Unknown Unreviewed

CVE-2024-50824 was published Nov 14, 2024

A SQL Injection vulnerability was found in /admin/login.php in kashipara E-learning Management... Unknown Unreviewed

CVE-2024-50823 was published Nov 14, 2024

In lunary-ai/lunary versions 1.2.2 through 1.2.6, an incorrect authorization vulnerability allows... Critical Unreviewed

CVE-2024-3379 was published Nov 14, 2024

In lunary-ai/lunary versions up to and including 1.2.5, an information disclosure vulnerability... Critical Unreviewed

CVE-2024-3502 was published Nov 14, 2024

An unclaimed Amazon S3 bucket, 'codeconf', is referenced in an audio file link within the .rst... Moderate Unreviewed

CVE-2024-1682 was published Nov 14, 2024

In lunary-ai/lunary versions up to and including 1.2.5, an information disclosure vulnerability... Critical Unreviewed

CVE-2024-3501 was published Nov 14, 2024

A Python command injection vulnerability exists in the `SagemakerLLM` class's `complete()` method... Critical Unreviewed

CVE-2024-4343 was published Nov 14, 2024

A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to... Critical Unreviewed

CVE-2024-37285 was published Nov 14, 2024

HCL Connections is vulnerable to a broken access control vulnerability that may allow an... Low Unreviewed

CVE-2024-42188 was published Nov 14, 2024

A SQL Injection vulnerability was found in /admin/edit_student.php in KASHIPARA E-learning... Unknown Unreviewed

CVE-2024-50835 was published Nov 14, 2024

A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/teachers.php in KASHIPARA E... Unknown Unreviewed

CVE-2024-50836 was published Nov 14, 2024

A SQL Injection vulnerability was found in /admin/edit_class.php in kashipara E-learning... Unknown Unreviewed

CVE-2024-50832 was published Nov 14, 2024

A SQL Injection was found in /admin/teachers.php in KASHIPARA E-learning Management System... Unknown Unreviewed

CVE-2024-50834 was published Nov 14, 2024

A SQL Injection vulnerability was found in /login.php in KASHIPARA E-learning Management System... Unknown Unreviewed

CVE-2024-50833 was published Nov 14, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

234,190 advisories