GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,632
NuGet
638
pip
3,246
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
104,505 advisories
Filter by severity
A vulnerability, which was classified as problematic, has been found in CodeCanyon CRMGo SaaS up...
Moderate
Unreviewed
CVE-2024-9031
was published
Sep 20, 2024
A vulnerability classified as problematic was found in CodeCanyon CRMGo SaaS 7.2. This...
Moderate
Unreviewed
CVE-2024-9030
was published
Sep 20, 2024
A vulnerability, which was classified as critical, was found in code-projects Crud Operation...
Moderate
Unreviewed
CVE-2024-9011
was published
Sep 20, 2024
A vulnerability classified as critical was found in SourceCodester Best Online News Portal 1.0....
Moderate
Unreviewed
CVE-2024-9008
was published
Sep 20, 2024
A vulnerability classified as problematic has been found in jeanmarc77 123solar 1.8.4.5. This...
Moderate
Unreviewed
CVE-2024-9007
was published
Sep 20, 2024
A vulnerability, which was classified as critical, has been found in code-projects Online Quiz...
Moderate
Unreviewed
CVE-2024-9009
was published
Sep 20, 2024
A vulnerability was found in jeanmarc77 123solar 1.8.4.5. It has been rated as critical. Affected...
Moderate
Unreviewed
CVE-2024-9006
was published
Sep 20, 2024
A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic...
Moderate
Unreviewed
CVE-2024-9003
was published
Sep 19, 2024
A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This...
Moderate
Unreviewed
CVE-2024-9001
was published
Sep 19, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43489
was published
Sep 19, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability
Moderate
Unreviewed
CVE-2024-38221
was published
Sep 19, 2024
A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected...
Moderate
Unreviewed
CVE-2024-9004
was published
Sep 19, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43496
was published
Sep 19, 2024
In JetBrains YouTrack before 2024.3.44799 token could be revealed on Imports page
Moderate
Unreviewed
CVE-2024-47162
was published
Sep 19, 2024
In JetBrains YouTrack before 2024.3.44799 access to global app config data without appropriate...
Moderate
Unreviewed
CVE-2024-47160
was published
Sep 19, 2024
A vulnerability in NetCat CMS allows an attacker to send a specially crafted http request that...
Moderate
Unreviewed
CVE-2024-8651
was published
Sep 19, 2024
A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser...
Moderate
Unreviewed
CVE-2024-8652
was published
Sep 19, 2024
A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser...
Moderate
Unreviewed
CVE-2024-8653
was published
Sep 19, 2024
In JetBrains YouTrack before 2024.3.44799 user without appropriate permissions could restore...
Moderate
Unreviewed
CVE-2024-47159
was published
Sep 19, 2024
A SQL injection vulnerability in linlinjava litemall 1.8.0 allows a remote attacker to obtain...
Moderate
Unreviewed
CVE-2024-46382
was published
Sep 19, 2024
A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net...
Moderate
Unreviewed
CVE-2024-8354
was published
Sep 19, 2024
A vulnerability was found in Performance Co-Pilot (PCP). This flaw allows an attacker to send...
Moderate
Unreviewed
CVE-2024-45769
was published
Sep 19, 2024
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an...
Moderate
Unreviewed
CVE-2024-45770
was published
Sep 19, 2024
The WP Custom Fields Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-8364
was published
Sep 19, 2024
The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-8850
was published
Sep 19, 2024
ProTip!
Advisories are also available from the
GraphQL API