GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,053 advisories
Filter by severity
SAP BusinessObjects Business Intelligence
Platform allows an authenticated attacker to upload...
Low
Unreviewed
CVE-2024-41731
was published
Aug 13, 2024
SAP BusinessObjects Business Intelligence
Platform allows an authenticated attacker to upload...
Low
Unreviewed
CVE-2024-28166
was published
Aug 13, 2024
A vulnerability was found in Fujian mwcms 1.0.0. It has been rated as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-7706
was published
Aug 13, 2024
A vulnerability was found in Fujian mwcms 1.0.0. It has been declared as critical. Affected by...
Moderate
Unreviewed
CVE-2024-7705
was published
Aug 13, 2024
ThreatSonar Anti-Ransomware from TeamT5 does not properly validate the content of uploaded files....
High
Unreviewed
CVE-2024-7694
was published
Aug 12, 2024
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager...
High
Unreviewed
CVE-2024-41913
was published
Aug 6, 2024
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-7506
was published
Aug 6, 2024
A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-7500
was published
Aug 6, 2024
The Blox Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing...
High
Unreviewed
CVE-2024-6315
was published
Aug 6, 2024
The CRM Perks Forms plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-7484
was published
Aug 6, 2024
A vulnerability, which was classified as critical, was found in itsourcecode Laravel Accounting...
Moderate
Unreviewed
CVE-2024-7495
was published
Aug 6, 2024
A Unrestricted upload of file with dangerous type vulnerability in meeting management function in...
Critical
Unreviewed
CVE-2024-6117
was published
Aug 5, 2024
A vulnerability has been found in itsourcecode Placement Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-7450
was published
Aug 4, 2024
The YayExtra – WooCommerce Extra Product Options plugin for WordPress is vulnerable to arbitrary...
Critical
Unreviewed
CVE-2024-7257
was published
Aug 3, 2024
A vulnerability was found in Baidu UEditor 1.4.3.3. It has been classified as problematic. This...
Moderate
Unreviewed
CVE-2024-7342
was published
Aug 1, 2024
Unrestricted upload of file with dangerous type vulnerability exists in ELECOM wireless LAN...
Moderate
Unreviewed
CVE-2024-34021
was published
Aug 1, 2024
A vulnerability, which was classified as critical, was found in YouDianCMS 7. Affected is an...
Moderate
Unreviewed
CVE-2024-7329
was published
Aug 1, 2024
A vulnerability was found in itsourcecode Alton Management System 1.0 and classified as critical....
Moderate
Unreviewed
CVE-2024-7277
was published
Jul 31, 2024
A vulnerability, which was classified as critical, was found in itsourcecode Society Management...
Moderate
Unreviewed
CVE-2024-7192
was published
Jul 29, 2024
A vulnerability classified as critical has been found in itsourcecode Online Food Ordering System...
Moderate
Unreviewed
CVE-2024-7189
was published
Jul 29, 2024
Cervantes through 0.5-alpha accepts insecure file uploads.
Moderate
Unreviewed
CVE-2024-42054
was published
Jul 28, 2024
The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-6431
was published
Jul 27, 2024
An arbitrary file upload vulnerability in Webkul Qloapps v1.6.0.0 allows attackers to execute...
High
Unreviewed
CVE-2024-40318
was published
Jul 25, 2024
The Social Auto Poster plugin for WordPress is vulnerable to arbitrary file uploads due to...
High
Unreviewed
CVE-2024-6756
was published
Jul 24, 2024
The Redux Framework plugin for WordPress is vulnerable to unauthenticated JSON file uploads due...
High
Unreviewed
CVE-2024-6828
was published
Jul 23, 2024
ProTip!
Advisories are also available from the
GraphQL API