GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
87 advisories
Filter by severity
The NinjaFirewall plugin for WordPress is vulnerable to Authenticated PHAR Deserialization in...
Moderate
Unreviewed
CVE-2021-4451
was published
Oct 16, 2024
A Potential DOS Vulnerability exists in CERT VINCE software prior to version 3.0.8. An...
Moderate
Unreviewed
CVE-2024-9953
was published
Oct 15, 2024
A vulnerability, which was classified as critical, was found in HuangDou UTCMS V9. This affects...
Moderate
Unreviewed
CVE-2024-9917
was published
Oct 13, 2024
Microsoft SharePoint Server Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-43466
was published
Sep 10, 2024
A vulnerability was found in Go-Tribe gotribe-admin 1.0 and classified as problematic. Affected...
Moderate
Unreviewed
CVE-2024-8003
was published
Aug 20, 2024
Deserialization of Untrusted Data vulnerability in MotoPress Timetable and Event Schedule allows...
Moderate
Unreviewed
CVE-2024-39630
was published
Aug 1, 2024
A vulnerability was found in kirilkirkov Ecommerce-Laravel-Bootstrap up to...
Moderate
Unreviewed
CVE-2024-7067
was published
Jul 24, 2024
Deserialization of Untrusted Data vulnerability in WP MEDIA SAS Search & Replace.This issue...
Moderate
Unreviewed
CVE-2024-38759
was published
Jul 22, 2024
A vulnerability was found in ZhongBangKeJi CRMEB up to 5.4.0 and classified as critical. Affected...
Moderate
Unreviewed
CVE-2024-6944
was published
Jul 21, 2024
A vulnerability has been found in ZhongBangKeJi CRMEB up to 5.4.0 and classified as critical....
Moderate
Unreviewed
CVE-2024-6943
was published
Jul 21, 2024
A vulnerability was found in WuKongOpenSource Wukong_nocode up to 20230807. It has been declared...
Moderate
Unreviewed
CVE-2024-6645
was published
Jul 10, 2024
A vulnerability was found in zmops ArgusDBM up to 0.1.0. It has been classified as critical....
Moderate
Unreviewed
CVE-2024-6644
was published
Jul 10, 2024
Deserialization of Untrusted Data vulnerability in wpweb WooCommerce Social Login.This issue...
Moderate
Unreviewed
CVE-2024-37502
was published
Jul 9, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000 up to 20230922. It...
Moderate
Unreviewed
CVE-2024-6525
was published
Jul 5, 2024
A vulnerability was found in ORIPA up to 1.72. It has been declared as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-6441
was published
Jul 2, 2024
The Universal Slider plugin for WordPress is vulnerable to PHP Object Injection in all versions...
Moderate
Unreviewed
CVE-2024-5649
was published
Jun 19, 2024
Deserialization of Untrusted Data vulnerability in WebToffee Order Export & Order Import for...
Moderate
Unreviewed
CVE-2024-34751
was published
May 16, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, has been found...
Moderate
Unreviewed
CVE-2024-4699
was published
May 14, 2024
Deserialization of Untrusted Data vulnerability in BdThemes Ultimate Store Kit Elementor Addons...
Moderate
Unreviewed
CVE-2024-4606
was published
May 14, 2024
Deserialization of Untrusted Data vulnerability in OCDI One Click Demo Import.This issue affects...
Moderate
Unreviewed
CVE-2024-34433
was published
May 14, 2024
The IBM SDK, Java Technology Edition's Object Request Broker (ORB) 7.1.0.0 through 7.1.5.21 and 8...
Moderate
Unreviewed
CVE-2023-38264
was published
May 14, 2024
Deserialization of Untrusted Data vulnerability in Team Yoast Custom field finder.This issue...
Moderate
Unreviewed
CVE-2024-33641
was published
Apr 29, 2024
Deserialization of Untrusted Data vulnerability in Import and export users and customers.This...
Moderate
Unreviewed
CVE-2024-32817
was published
Apr 24, 2024
Deserialization of Untrusted Data vulnerability in WebToffee Import Export WordPress Users.This...
Moderate
Unreviewed
CVE-2024-32835
was published
Apr 24, 2024
A vulnerability classified as critical has been found in Byzoro Smart S80 Management Platform up...
Moderate
Unreviewed
CVE-2024-4019
was published
Apr 20, 2024
ProTip!
Advisories are also available from the
GraphQL API