GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,659
Composer 4,237
Erlang 31
GitHub Actions 20
Go 1,996
Maven 5,181
npm 3,709
NuGet 661
pip 3,349
Pub 11
RubyGems 885
Rust 846
Swift 36

Unreviewed advisories

All unreviewed 235,071

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

92,476 advisories

Filter by severity

Sort by

Least recently updated

TOTOLINK A810R V4.1.2cu.5182_B20201026 is vulnerable to Buffer Overflow in infostat.cgi. High Unreviewed

CVE-2024-53334 was published Nov 21, 2024

Linksys E3000 1.0.06.002_US is vulnerable to command injection via the diag_ping_start function. High Unreviewed

CVE-2024-48286 was published Nov 21, 2024

D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution (RCE)... High Unreviewed

CVE-2024-52739 was published Nov 20, 2024

In query of DownloadManager.java, there is a possible read/write of arbitrary files due to a... High Unreviewed

CVE-2018-9468 was published Nov 20, 2024

In bff_Scanner_addOutPos of Scanner.c, there is a possible out-of-bounds write due to an... High Unreviewed

CVE-2018-9470 was published Nov 20, 2024

In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer... High Unreviewed

CVE-2018-9472 was published Nov 20, 2024

In HeadsetInterface::ClccResponse of btif_hf.cc, there is a possible out of bounds stack write... High Unreviewed

CVE-2018-9475 was published Nov 20, 2024

In the development options section of the Settings app, there is a possible authentication bypass... High Unreviewed

CVE-2018-9477 was published Nov 20, 2024

In l2cu_send_peer_config_rej of l2c_utils.cc, there is a possible out of bounds read due to a... High Unreviewed

CVE-2018-9484 was published Nov 20, 2024

In writeToParcel of MediaPlayer.java, there is a possible serialization/deserialization mismatch... High Unreviewed

CVE-2018-9474 was published Nov 20, 2024

In multiple functions of ShortcutService.java, there is a possible creation of a spoofed shortcut... High Unreviewed

CVE-2018-9469 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed

CVE-2024-52473 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed

CVE-2024-52472 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed

CVE-2024-52471 was published Nov 20, 2024

The Clone plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and... High Unreviewed

CVE-2024-10913 was published Nov 20, 2024

Buffer overflow vulnerability in OllyDbg, version 1.10, which could allow a local attacker to... High Unreviewed

CVE-2024-11495 was published Nov 20, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed

CVE-2024-52470 was published Nov 20, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Buying Buddy Buying Buddy IDX CRM allows... High Unreviewed

CVE-2024-52446 was published Nov 20, 2024

Deserialization of Untrusted Data vulnerability in Modeltheme QRMenu Restaurant QR Menu Lite... High Unreviewed

CVE-2024-52445 was published Nov 20, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52449 was published Nov 20, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52444 was published Nov 20, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-52450 was published Nov 20, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Aaron Robbins Post Ideas allows SQL Injection... High Unreviewed

CVE-2024-52451 was published Nov 20, 2024

Path Traversal: '.../...//' vulnerability in Corporate Zen Contact Page With Google Map allows... High Unreviewed

CVE-2024-52447 was published Nov 20, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52448 was published Nov 20, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

92,476 advisories