Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,132
Erlang
29
GitHub Actions
19
Go
1,937
Maven
5,000+
npm
3,676
NuGet
642
pip
3,292
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

4,823 advisories

Loading
On Microchip RN4870 devices, when more than one consecutive PairReqNoInputNoOutput request is ... Moderate Unreviewed
CVE-2024-29155 was published Oct 16, 2024
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &... Moderate Unreviewed
CVE-2024-9507 was published Oct 11, 2024
Improper input validation in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version... Moderate Unreviewed
CVE-2023-24463 was published Oct 10, 2024
Magento Open Source Improper Input Validation vulnerability Moderate
CVE-2024-45117 was published for magento/community-edition (Composer) Oct 10, 2024
Bandisoft BandiView 7.05 is Incorrect Access Control via sub_0x232bd8 resulting in denial of... Moderate Unreviewed
CVE-2024-45871 was published Oct 3, 2024
Improper Input Validation in Buildah and Podman Moderate
CVE-2024-9407 was published for github.com/containers/buildah (Go) Oct 1, 2024
Contao affected by insert tag injection via canonical URL Moderate
CVE-2024-45612 was published for contao/core-bundle (Composer) Sep 17, 2024
aschempp
Improper input validation in some Intel(R) RAID Web Console software all versions may allow an... Moderate Unreviewed
CVE-2024-34545 was published Sep 16, 2024
Windows Networking Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-38234 was published Sep 10, 2024
Windows Standards-Based Storage Management Service Denial of Service Vulnerability Moderate Unreviewed
CVE-2024-38230 was published Sep 10, 2024
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Improper Input... Moderate Unreviewed
CVE-2024-42424 was published Sep 10, 2024
The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain... Moderate Unreviewed
CVE-2024-8445 was published Sep 5, 2024
Access permission verification vulnerability in the WMS module Impact: Successful exploitation of... Moderate Unreviewed
CVE-2024-45444 was published Sep 4, 2024
Access permission verification vulnerability in the camera driver module Impact: Successful... Moderate Unreviewed
CVE-2024-45446 was published Sep 4, 2024
Input verification vulnerability in the system service module Impact: Successful exploitation of... Moderate Unreviewed
CVE-2024-45441 was published Sep 4, 2024
Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input... Moderate Unreviewed
CVE-2024-38303 was published Aug 29, 2024
A Cross-Site Scripting vulnerable identified in NetIQ Advance Authentication that impacts the... Moderate Unreviewed
CVE-2021-38122 was published Aug 28, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation... Moderate Unreviewed
CVE-2024-41849 was published Aug 23, 2024
Ericsson Packet Core Controller (PCC) contains a vulnerability in Access and Mobility Management... Moderate Unreviewed
CVE-2024-25009 was published Aug 20, 2024
Ericsson RAN Compute and Site Controller 6610 contains a vulnerability in the Control System... Moderate Unreviewed
CVE-2024-25008 was published Aug 16, 2024
Illustrator versions 28.5, 27.9.4 and earlier are affected by an Improper Input Validation... Moderate Unreviewed
CVE-2024-34118 was published Aug 14, 2024
Improper input validation in firmware for some Intel(R) CSME may allow a privileged user to... Moderate Unreviewed
CVE-2023-34424 was published Aug 14, 2024
Dell BIOS contains an Improper Input Validation vulnerability in an externally developed... Moderate Unreviewed
CVE-2024-38483 was published Aug 14, 2024
Improper input validation in ARM® Trusted Firmware used in AMD’s Zynq™ UltraScale+™) MPSoC/RFSoC... Moderate Unreviewed
CVE-2023-31339 was published Aug 13, 2024
The Brizy – Page Builder plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed
CVE-2024-6254 was published Aug 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database