Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,053 advisories

Loading
SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker to upload... Low Unreviewed
CVE-2024-41731 was published Aug 13, 2024
SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker to upload... Low Unreviewed
CVE-2024-28166 was published Aug 13, 2024
A vulnerability was found in Fujian mwcms 1.0.0. It has been rated as critical. Affected by this... Moderate Unreviewed
CVE-2024-7706 was published Aug 13, 2024
A vulnerability was found in Fujian mwcms 1.0.0. It has been declared as critical. Affected by... Moderate Unreviewed
CVE-2024-7705 was published Aug 13, 2024
ThreatSonar Anti-Ransomware from TeamT5 does not properly validate the content of uploaded files.... High Unreviewed
CVE-2024-7694 was published Aug 12, 2024
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager... High Unreviewed
CVE-2024-41913 was published Aug 6, 2024
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as... Moderate Unreviewed
CVE-2024-7506 was published Aug 6, 2024
A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as... Moderate Unreviewed
CVE-2024-7500 was published Aug 6, 2024
The Blox Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing... High Unreviewed
CVE-2024-6315 was published Aug 6, 2024
The CRM Perks Forms plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-7484 was published Aug 6, 2024
A vulnerability, which was classified as critical, was found in itsourcecode Laravel Accounting... Moderate Unreviewed
CVE-2024-7495 was published Aug 6, 2024
A Unrestricted upload of file with dangerous type vulnerability in meeting management function in... Critical Unreviewed
CVE-2024-6117 was published Aug 5, 2024
A vulnerability has been found in itsourcecode Placement Management System 1.0 and classified as... Moderate Unreviewed
CVE-2024-7450 was published Aug 4, 2024
The YayExtra – WooCommerce Extra Product Options plugin for WordPress is vulnerable to arbitrary... Critical Unreviewed
CVE-2024-7257 was published Aug 3, 2024
A vulnerability was found in Baidu UEditor 1.4.3.3. It has been classified as problematic. This... Moderate Unreviewed
CVE-2024-7342 was published Aug 1, 2024
Unrestricted upload of file with dangerous type vulnerability exists in ELECOM wireless LAN... Moderate Unreviewed
CVE-2024-34021 was published Aug 1, 2024
A vulnerability, which was classified as critical, was found in YouDianCMS 7. Affected is an... Moderate Unreviewed
CVE-2024-7329 was published Aug 1, 2024
A vulnerability was found in itsourcecode Alton Management System 1.0 and classified as critical.... Moderate Unreviewed
CVE-2024-7277 was published Jul 31, 2024
A vulnerability, which was classified as critical, was found in itsourcecode Society Management... Moderate Unreviewed
CVE-2024-7192 was published Jul 29, 2024
A vulnerability classified as critical has been found in itsourcecode Online Food Ordering System... Moderate Unreviewed
CVE-2024-7189 was published Jul 29, 2024
Cervantes through 0.5-alpha accepts insecure file uploads. Moderate Unreviewed
CVE-2024-42054 was published Jul 28, 2024
The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6431 was published Jul 27, 2024
An arbitrary file upload vulnerability in Webkul Qloapps v1.6.0.0 allows attackers to execute... High Unreviewed
CVE-2024-40318 was published Jul 25, 2024
The Social Auto Poster plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6756 was published Jul 24, 2024
The Redux Framework plugin for WordPress is vulnerable to unauthenticated JSON file uploads due... High Unreviewed
CVE-2024-6828 was published Jul 23, 2024
ProTip! Advisories are also available from the GraphQL API