GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
60 advisories
Filter by severity
A vulnerability in the file download feature of Cisco Firepower Management Center (FMC) Software...
Moderate
Unreviewed
CVE-2023-20114
was published
Nov 1, 2023
This external control vulnerability, if exploited, could allow a local OS-authenticated user...
Moderate
Unreviewed
CVE-2023-34982
was published
Nov 15, 2023
A vulnerability was found in SourceCodester Simple Student Attendance System 1.0. It has been...
Moderate
Unreviewed
CVE-2023-6618
was published
Dec 8, 2023
A vulnerability was found in SourceCodester Clinic Queuing System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-0265
was published
Jan 7, 2024
An information disclosure vulnerability exists in the aVideoEncoder.json.php chunkFile path...
Moderate
Unreviewed
CVE-2023-47171
was published
Jan 10, 2024
An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image...
Moderate
Unreviewed
CVE-2023-49862
was published
Jan 10, 2024
An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image...
Moderate
Unreviewed
CVE-2023-49863
was published
Jan 10, 2024
An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image...
Moderate
Unreviewed
CVE-2023-49864
was published
Jan 10, 2024
A vulnerability classified as problematic was found in ForU CMS up to 2020-06-23. Affected by...
Moderate
Unreviewed
CVE-2024-0728
was published
Jan 19, 2024
CloudLinux
CageFS 7.0.8-2 or below insufficiently restricts file paths supplied to
the sendmail...
Moderate
Unreviewed
CVE-2020-36772
was published
Jan 22, 2024
Leanote version 2.7.0 allows obtaining arbitrary local files. This is possible
because the...
Moderate
Unreviewed
CVE-2024-0849
was published
Feb 7, 2024
php-svg-lib lacks path validation on font through SVG inline styles
Moderate
CVE-2024-25117
was published
for
phenx/php-svg-lib
(Composer)
Feb 21, 2024
A vulnerability, which was classified as critical, has been found in SourceCodester Insurance...
Moderate
Unreviewed
CVE-2024-2150
was published
Mar 3, 2024
A vulnerability was found in SourceCodester Best POS Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-2155
was published
Mar 4, 2024
IBM Watson CP4D Data Stores 4.6.0 through 4.6.3 could allow a user with physical access and...
Moderate
Unreviewed
CVE-2023-26282
was published
Mar 5, 2024
Windows Compressed Folder Tampering Vulnerability
Moderate
Unreviewed
CVE-2024-26185
was published
Mar 12, 2024
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 could allow an attacker to overwrite a log message...
Moderate
Unreviewed
CVE-2023-47147
was published
Mar 15, 2024
GeoServer Arbitrary file renaming vulnerability in REST Coverage/Data Store API
Moderate
CVE-2024-23634
was published
for
org.geoserver:gs-restconfig
(Maven)
Mar 20, 2024
A vulnerability was found in Campcodes House Rental Management System 1.0. It has been declared...
Moderate
Unreviewed
CVE-2024-2917
was published
Mar 27, 2024
A file write vulnerability exists in the OAS Engine Tags Configuration functionality of Open...
Moderate
Unreviewed
CVE-2024-21870
was published
Apr 3, 2024
A file write vulnerability exists in the OAS Engine Save Security Configuration functionality of...
Moderate
Unreviewed
CVE-2024-22178
was published
Apr 3, 2024
An issue was discovered in Logpoint before 7.4.0. It allows Local File Inclusion (LFI) when an...
Moderate
Unreviewed
CVE-2024-33860
was published
May 7, 2024
NVIDIA Triton Inference Server for Linux contains a vulnerability in the tracing API, where a...
Moderate
Unreviewed
CVE-2024-0100
was published
May 14, 2024
A vulnerability was found in Campcodes Online Laundry Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-4818
was published
May 14, 2024
Dell PowerScale OneFS versions 8.2.x through 9.7.0.2 contains an external control of file name or...
Moderate
Unreviewed
CVE-2024-25965
was published
May 14, 2024
ProTip!
Advisories are also available from the
GraphQL API