GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,413

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

81 advisories

Filter by severity

Sort by

Least recently updated

The install() function of ProviderInstaller.java in Magisk App before canary version 27007 does... High Unreviewed

CVE-2024-48336 was published Nov 4, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-50497 was published Oct 28, 2024

ScienceLogic SL1 (formerly EM7) is affected by an unspecified vulnerability involving an... Critical Unreviewed

CVE-2024-9537 was published Oct 18, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-49243 was published Oct 18, 2024

Inclusion of functionality from untrusted control sphere vulnerability in OpenSSL DLL component... High Unreviewed

CVE-2022-49038 was published Sep 26, 2024

The HTTPD binary in multiple ZTE routers has a local file inclusion vulnerability in session_init... High Unreviewed

CVE-2024-45416 was published Sep 16, 2024

Inclusion of Functionality from Untrusted Control Sphere(CWE-829) in the Command Centre Server... High Unreviewed

CVE-2024-43690 was published Sep 11, 2024

The Clean Login plugin for WordPress is vulnerable to Local File Inclusion in all versions up to,... High Unreviewed

CVE-2024-8252 was published Aug 30, 2024

Zen Cart findPluginAdminPage Local File Inclusion Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2024-5762 was published Aug 21, 2024

Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information... Critical Unreviewed

CVE-2024-38476 was published Jul 1, 2024

An unauthenticated IEEE 802.15.4 'co-ordinator realignment' packet can be used to force Zigbee... High Unreviewed

CVE-2024-3043 was published Jun 27, 2024

Offscreen Canvas did not properly track cross-origin tainting, which could be used to access... Moderate Unreviewed

CVE-2024-5693 was published Jun 11, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Moderate Unreviewed

CVE-2024-35650 was published Jun 10, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Critical Unreviewed

CVE-2024-35629 was published Jun 4, 2024

A command execution vulnerability exists in the tddpd enable_test_mode functionality of Tp-Link... High Unreviewed

CVE-2023-49133 was published Apr 9, 2024

A command execution vulnerability exists in the tddpd enable_test_mode functionality of Tp-Link... High Unreviewed

CVE-2023-49134 was published Apr 9, 2024

The Backup Migration plugin for WordPress is vulnerable to Remote File Inclusion in versions 1.0... High Unreviewed

CVE-2023-6971 was published Dec 23, 2023

A local file inclusion vulnerability has been found in WPN-XM Serverstack affecting version 0.8.6... High Unreviewed

CVE-2023-4591 was published Nov 3, 2023

In Yettiesoft VestCert versions 2.36 to 2.5.29, a vulnerability exists due to improper validation... Critical Unreviewed

CVE-2023-45798 was published Oct 30, 2023

A local file inclusion vulnerability via the lang parameter in OcoMon before v4.0.1 allows... High Unreviewed

CVE-2023-33559 was published Oct 26, 2023

Execution of downloaded content flaw in M-Files Web Companion before release version 23.10 and... High Unreviewed

CVE-2023-5523 was published Oct 20, 2023

The Dropbox Folder Share for WordPress is vulnerable to Local File Inclusion in versions up to,... Critical Unreviewed

CVE-2023-4488 was published Oct 20, 2023

There is insufficient sanitization of tainted file names that are directly concatenated with a... High Unreviewed

CVE-2023-2453 was published Sep 5, 2023

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the Schweitzer... Moderate Unreviewed

CVE-2023-31168 was published Aug 31, 2023

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the Schweitzer... Moderate Unreviewed

CVE-2023-31170 was published Aug 31, 2023

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

81 advisories