Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,030
Maven
5,000+
npm
3,732
NuGet
662
pip
3,409
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,073 advisories

Loading
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user... High Unreviewed
CVE-2024-45171 was published Sep 5, 2024
MCMS v5.4.1 has front-end file upload vulnerability which can lead to remote command execution. High Unreviewed
CVE-2024-42991 was published Sep 3, 2024
6SHR system from Gether Technology does not properly validate uploaded file types, allowing... High Unreviewed
CVE-2024-8330 was published Aug 30, 2024
The Funnelforms Free plugin for WordPress is vulnerable to arbitrary file uploads due to missing... High Unreviewed
CVE-2024-6311 was published Aug 28, 2024
A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™... High Unreviewed
CVE-2024-7987 was published Aug 26, 2024
publiccms V4.0.202302.e and before is vulnerable to Any File Upload via publiccms/admin... High Unreviewed
CVE-2024-42523 was published Aug 23, 2024
Kashipara Hotel Management System v1.0 is vulnerable to Unrestricted File Upload RCE via /admin... High Unreviewed
CVE-2024-42767 was published Aug 22, 2024
The AcyMailing – An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress... High Unreviewed
CVE-2024-7384 was published Aug 22, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=save_playlist" in... High Unreviewed
CVE-2024-42778 was published Aug 21, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=save_music" in... High Unreviewed
CVE-2024-42779 was published Aug 21, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=save_genre" in... High Unreviewed
CVE-2024-42780 was published Aug 21, 2024
The AdRotate Banner Manager – The only ad manager you'll need plugin for WordPress is vulnerable... High Unreviewed
CVE-2022-1206 was published Aug 20, 2024
The Metform Elementor Contact Form Builder for WordPress is vulnerable to Arbitrary File Upload... High Unreviewed
CVE-2023-0714 was published Aug 17, 2024
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows... High Unreviewed
CVE-2024-42676 was published Aug 15, 2024
The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2024-4389 was published Aug 14, 2024
The Media Library Assistant plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6823 was published Aug 13, 2024
ThreatSonar Anti-Ransomware from TeamT5 does not properly validate the content of uploaded files.... High Unreviewed
CVE-2024-7694 was published Aug 12, 2024
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager... High Unreviewed
CVE-2024-41913 was published Aug 6, 2024
The Blox Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing... High Unreviewed
CVE-2024-6315 was published Aug 6, 2024
The CRM Perks Forms plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-7484 was published Aug 6, 2024
The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6431 was published Jul 27, 2024
An arbitrary file upload vulnerability in Webkul Qloapps v1.6.0.0 allows attackers to execute... High Unreviewed
CVE-2024-40318 was published Jul 25, 2024
The Social Auto Poster plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6756 was published Jul 24, 2024
The Redux Framework plugin for WordPress is vulnerable to unauthenticated JSON file uploads due... High Unreviewed
CVE-2024-6828 was published Jul 23, 2024
Automad arbitrary file upload vulnerability High
CVE-2024-40400 was published for automad/automad (Composer) Jul 19, 2024
marcantondahmen
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database