GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
105,924 advisories
Filter by severity
A vulnerability in Trend Micro Deep Discovery Inspector (DDI) versions 5.8 and above could allow...
Moderate
Unreviewed
CVE-2024-46903
was published
Oct 22, 2024
Reflected XSS was discovered in a Dashboard Listing Archer Platform UX page in Archer Platform 6...
Moderate
Unreviewed
CVE-2024-49211
was published
Oct 22, 2024
A vulnerability has been found in the CPython `venv` module and CLI where path names provided...
Moderate
Unreviewed
CVE-2024-9287
was published
Oct 22, 2024
Reflected XSS was discovered in an iView List Archer Platform UX page in Archer Platform 6.x...
Moderate
Unreviewed
CVE-2024-49210
was published
Oct 22, 2024
A vulnerability in Jamf Pro's Jamf Remote Assist tool allows a local, non-privileged user to...
Moderate
Unreviewed
CVE-2024-10183
was published
Oct 22, 2024
Archer Platform 2024.03 before version 2024.09 is affected by an API authorization bypass...
Moderate
Unreviewed
CVE-2024-49209
was published
Oct 22, 2024
A vulnerability was found in Wildfly, where a user may perform Cross-site scripting in the...
Moderate
Unreviewed
CVE-2024-10234
was published
Oct 22, 2024
A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to...
Moderate
Unreviewed
CVE-2024-50311
was published
Oct 22, 2024
IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the...
Moderate
Unreviewed
CVE-2024-43177
was published
Oct 22, 2024
Archer Platform 2024.03 before version 2024.08 is affected by an authorization bypass...
Moderate
Unreviewed
CVE-2024-49208
was published
Oct 22, 2024
A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection...
Moderate
Unreviewed
CVE-2024-50312
was published
Oct 22, 2024
Collabtive 3.1 is vulnerable to Cross-Site Scripting (XSS) via the name parameter in (a) file...
Moderate
Unreviewed
CVE-2024-48708
was published
Oct 22, 2024
Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the name parameter under (a)...
Moderate
Unreviewed
CVE-2024-48707
was published
Oct 22, 2024
Multiple Stored Cross-Site Scripting vulnerabilities were discovered in Y Soft SAFEQ 6 Build 53....
Moderate
Unreviewed
CVE-2022-23861
was published
Oct 22, 2024
Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the title parameter with action...
Moderate
Unreviewed
CVE-2024-48706
was published
Oct 22, 2024
Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the name parameter under action...
Moderate
Unreviewed
CVE-2024-46240
was published
Oct 22, 2024
The WP-Members Membership Plugin plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-9231
was published
Oct 22, 2024
The Anchor Episodes Index (Spotify for Podcasters) plugin for WordPress is vulnerable to Stored...
Moderate
Unreviewed
CVE-2024-10189
was published
Oct 22, 2024
The News Kit Elementor Addons plugin for WordPress is vulnerable to Sensitive Information...
Moderate
Unreviewed
CVE-2024-9541
was published
Oct 22, 2024
The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Cross-Site Request...
Moderate
Unreviewed
CVE-2024-9588
was published
Oct 22, 2024
The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-9590
was published
Oct 22, 2024
The Category and Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
Moderate
Unreviewed
CVE-2024-9591
was published
Oct 22, 2024
The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-9589
was published
Oct 22, 2024
The Rover IDX plugin for WordPress is vulnerable to unauthorized access, modification, and loss...
Moderate
Unreviewed
CVE-2024-10003
was published
Oct 22, 2024
The All-in-One WP Migration and Backup plugin for WordPress is vulnerable to Sensitive...
Moderate
Unreviewed
CVE-2024-8852
was published
Oct 22, 2024
ProTip!
Advisories are also available from the
GraphQL API