GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,870
Composer 4,263
Erlang 31
GitHub Actions 21
Go 2,033
Maven 5,218
npm 3,732
NuGet 662
pip 3,411
Pub 12
RubyGems 891
Rust 865
Swift 36

Unreviewed advisories

All unreviewed 237,507

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

93,493 advisories

Filter by severity

Sort by

Least recently updated

Versions of the package spatie/browsershot before 5.0.1 are vulnerable to Improper Input... High Unreviewed

CVE-2024-21544 was published Dec 13, 2024

Deserialization of Untrusted Data vulnerability in PlexTrac (Runbooks modules) which allows... High Unreviewed

CVE-2024-11839 was published Dec 13, 2024

External Control of File Name or Path vulnerability in PlexTrac allows Local Code Inclusion... High Unreviewed

CVE-2024-11838 was published Dec 13, 2024

Improper Neutralization of Special Elements used in an N1QL Command ('N1QL Injection')... High Unreviewed

CVE-2024-11837 was published Dec 13, 2024

Uncontrolled Resource Consumption vulnerability in PlexTrac allows WebSocket DoS.This issue... High Unreviewed

CVE-2024-11835 was published Dec 13, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-11833 was published Dec 13, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-11834 was published Dec 13, 2024

Server-Side Request Forgery (SSRF) vulnerability in PlexTrac allowing requests to internal system... High Unreviewed

CVE-2024-11836 was published Dec 13, 2024

The vulnerability occurs in the parsing of CSP files. The issues result from the lack of proper... High Unreviewed

CVE-2024-12212 was published Dec 13, 2024

Horner Automation Cscape contains a memory corruption vulnerability, which could allow an... High Unreviewed

CVE-2024-9508 was published Dec 13, 2024

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sequoia 15.2... High Unreviewed

CVE-2024-54515 was published Dec 12, 2024

An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. A mobile network... High Unreviewed

CVE-2023-25185 was published Jun 16, 2023

An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow... High Unreviewed

CVE-2021-26344 was published Aug 13, 2024

An SQL injection vulnerability exists in the BIG-IP Next Central Manager API (URI). Note:... High Unreviewed

CVE-2024-26026 was published May 8, 2024

An OData injection vulnerability exists in the BIG-IP Next Central Manager API (URI). Note:... High Unreviewed

CVE-2024-21793 was published May 8, 2024

Null pointer dereference vulnerability in the image decoding module Impact: Successful... High Unreviewed

CVE-2024-54106 was published Dec 12, 2024

Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write... High Unreviewed

CVE-2022-23815 was published Aug 13, 2024

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow... High Unreviewed

CVE-2024-11622 was published Nov 27, 2024

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow... High Unreviewed

CVE-2024-53675 was published Nov 27, 2024

An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow... High Unreviewed

CVE-2024-53674 was published Nov 27, 2024

The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.1 and iPadOS... High Unreviewed

CVE-2024-44299 was published Dec 12, 2024

Substance3D - Modeler versions 1.14.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2024-52999 was published Dec 11, 2024

The driver installation package created by Printer Driver Packager NX v1.0.02 to v1.1.25 fails to... High Unreviewed

CVE-2023-30759 was published Jun 19, 2023

An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. If/when CSP (as a... High Unreviewed

CVE-2023-25188 was published Jun 16, 2023

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will... High Unreviewed

CVE-2022-48498 was published Jun 19, 2023

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

93,493 advisories