Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,996
Maven
5,000+
npm
3,709
NuGet
661
pip
3,348
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

255,714 advisories

Loading
Searching Opencast may cause a denial of service Moderate
CVE-2024-52797 was published for org.opencastproject:opencast-elasticsearch-impl (Maven) Nov 20, 2024
Litestar allows unbounded resource consumption (DoS vulnerability) High
CVE-2024-52581 was published for litestar (pip) Nov 20, 2024
defnull
A reflected cross-site scripting (XSS) vulnerability on the Rental Availability module of eSoft... Unknown Unreviewed
CVE-2024-48531 was published Nov 20, 2024
An issue was discovered in MBed OS 6.16.0. Its hci parsing software dynamically determines the... Unknown Unreviewed
CVE-2024-48982 was published Nov 20, 2024
An issue was discovered in Zimbra Collaboration (ZCS) through 10.1. A reflected Cross-Site... Unknown Unreviewed
CVE-2024-45511 was published Nov 20, 2024
An issue was discovered in MBed OS 6.16.0. Its hci parsing software dynamically determines the... Unknown Unreviewed
CVE-2024-48986 was published Nov 20, 2024
A stored cross-site scripting (XSS) vulnerability in eSoft Planner 3.24.08271-USA allows... Unknown Unreviewed
CVE-2024-48535 was published Nov 20, 2024
D-LINK DI-8003 v16.07.16A1 was discovered to contain a buffer overflow via the notify parameter... Unknown Unreviewed
CVE-2024-52757 was published Nov 20, 2024
An issue was discovered in Zimbra Collaboration (ZCS) through 10.0. Zimbra Webmail (Modern UI) is... Unknown Unreviewed
CVE-2024-45510 was published Nov 20, 2024
HkCms <= v2.3.2.240702 is vulnerable to file upload in the getFileName method in /app/common... Unknown Unreviewed
CVE-2024-52677 was published Nov 20, 2024
A reflected cross-site scripting (XSS) vulnerability on the Camp Details module of eSoft Planner... Unknown Unreviewed
CVE-2024-48534 was published Nov 20, 2024
An issue in the Instructor Appointment Availability module of eSoft Planner 3.24.08271-USA allows... Unknown Unreviewed
CVE-2024-48530 was published Nov 20, 2024
Querydsl 5.1.0 allows SQL/HQL injection in orderBy in JPAQuery. Unknown Unreviewed
CVE-2024-49203 was published Nov 20, 2024
A stored cross-site scripting (XSS) vulnerability in the Configuration page of Piwigo v14.5.0... Unknown Unreviewed
CVE-2024-52701 was published Nov 20, 2024
A discrepancy between responses for valid and invalid e-mail accounts in the Forgot your Login?... Unknown Unreviewed
CVE-2024-48533 was published Nov 20, 2024
Incorrect access control in eSoft Planner 3.24.08271-USA allow attackers to view all transactions... Unknown Unreviewed
CVE-2024-48536 was published Nov 20, 2024
An issue was discovered in MBed OS 6.16.0. When parsing hci reports, the hci parsing software... Unknown Unreviewed
CVE-2024-48984 was published Nov 20, 2024
H3C GR-1800AX MiniGRW1B0V100R007 is vulnerable to remote code execution (RCE) via the aspForm... Unknown Unreviewed
CVE-2024-52765 was published Nov 20, 2024
A stored cross-site scripting (XSS) vulnerability in the component install\index.php of MyBB v1.8... Unknown Unreviewed
CVE-2024-52702 was published Nov 20, 2024
An issue in Kasda LinkSmart Router KW5515 v1.7 and before allows an authenticated remote attacker... Unknown Unreviewed
CVE-2024-33439 was published Nov 20, 2024
D-LINK DI-8003 v16.07.16A1 was discovered to contain a buffer overflow via the fn parameter in... Unknown Unreviewed
CVE-2024-52754 was published Nov 20, 2024
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software... Unknown Unreviewed
CVE-2024-48981 was published Nov 20, 2024
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software... Unknown Unreviewed
CVE-2024-48983 was published Nov 20, 2024
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software... Unknown Unreviewed
CVE-2024-48985 was published Nov 20, 2024
cert-manager ha a potential slowdown / DoS when parsing specially crafted PEM inputs Moderate
GHSA-r4pg-vg54-wxx4 was published for github.com/cert-manager/cert-manager (Go) Nov 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database