GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,350
Composer 4,134
Erlang 29
GitHub Actions 19
Go 1,941
Maven 5,135
npm 3,681
NuGet 650
pip 3,298
Pub 11
RubyGems 877
Rust 830
Swift 35

Unreviewed advisories

All unreviewed 231,415

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

105,924 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability in Trend Micro Deep Discovery Inspector (DDI) versions 5.8 and above could allow... Moderate Unreviewed

CVE-2024-46903 was published Oct 22, 2024

Reflected XSS was discovered in a Dashboard Listing Archer Platform UX page in Archer Platform 6... Moderate Unreviewed

CVE-2024-49211 was published Oct 22, 2024

A vulnerability has been found in the CPython `venv` module and CLI where path names provided... Moderate Unreviewed

CVE-2024-9287 was published Oct 22, 2024

Reflected XSS was discovered in an iView List Archer Platform UX page in Archer Platform 6.x... Moderate Unreviewed

CVE-2024-49210 was published Oct 22, 2024

A vulnerability in Jamf Pro's Jamf Remote Assist tool allows a local, non-privileged user to... Moderate Unreviewed

CVE-2024-10183 was published Oct 22, 2024

Archer Platform 2024.03 before version 2024.09 is affected by an API authorization bypass... Moderate Unreviewed

CVE-2024-49209 was published Oct 22, 2024

A vulnerability was found in Wildfly, where a user may perform Cross-site scripting in the... Moderate Unreviewed

CVE-2024-10234 was published Oct 22, 2024

A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to... Moderate Unreviewed

CVE-2024-50311 was published Oct 22, 2024

IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the... Moderate Unreviewed

CVE-2024-43177 was published Oct 22, 2024

Archer Platform 2024.03 before version 2024.08 is affected by an authorization bypass... Moderate Unreviewed

CVE-2024-49208 was published Oct 22, 2024

A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection... Moderate Unreviewed

CVE-2024-50312 was published Oct 22, 2024

Collabtive 3.1 is vulnerable to Cross-Site Scripting (XSS) via the name parameter in (a) file... Moderate Unreviewed

CVE-2024-48708 was published Oct 22, 2024

Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the name parameter under (a)... Moderate Unreviewed

CVE-2024-48707 was published Oct 22, 2024

Multiple Stored Cross-Site Scripting vulnerabilities were discovered in Y Soft SAFEQ 6 Build 53.... Moderate Unreviewed

CVE-2022-23861 was published Oct 22, 2024

Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the title parameter with action... Moderate Unreviewed

CVE-2024-48706 was published Oct 22, 2024

Collabtive 3.1 is vulnerable to Cross-site scripting (XSS) via the name parameter under action... Moderate Unreviewed

CVE-2024-46240 was published Oct 22, 2024

The WP-Members Membership Plugin plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2024-9231 was published Oct 22, 2024

The Anchor Episodes Index (Spotify for Podcasters) plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2024-10189 was published Oct 22, 2024

The News Kit Elementor Addons plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-9541 was published Oct 22, 2024

The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2024-9588 was published Oct 22, 2024

The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-9590 was published Oct 22, 2024

The Category and Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-9591 was published Oct 22, 2024

The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-9589 was published Oct 22, 2024

The Rover IDX plugin for WordPress is vulnerable to unauthorized access, modification, and loss... Moderate Unreviewed

CVE-2024-10003 was published Oct 22, 2024

The All-in-One WP Migration and Backup plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2024-8852 was published Oct 22, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

105,924 advisories