Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,462
Erlang
33
GitHub Actions
22
Go
2,159
Maven
5,000+
npm
3,820
NuGet
696
pip
3,502
Pub
12
RubyGems
903
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

115,845 advisories

Loading
A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This... Moderate Unreviewed
CVE-2024-9001 was published Sep 19, 2024
Couchbase Server 7.6.x before 7.6.2, 7.2.x before 7.2.6, and all earlier versions allows HTTP... Moderate Unreviewed
CVE-2024-25673 was published Sep 19, 2024
A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic... Moderate Unreviewed
CVE-2024-9003 was published Sep 19, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43489 was published Sep 19, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43496 was published Sep 19, 2024
In JetBrains YouTrack before 2024.3.44799 access to global app config data without appropriate... Moderate Unreviewed
CVE-2024-47160 was published Sep 19, 2024
In JetBrains YouTrack before 2024.3.44799 token could be revealed on Imports page Moderate Unreviewed
CVE-2024-47162 was published Sep 19, 2024
In JetBrains YouTrack before 2024.3.44799 user without appropriate permissions could restore... Moderate Unreviewed
CVE-2024-47159 was published Sep 19, 2024
A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser... Moderate Unreviewed
CVE-2024-8653 was published Sep 19, 2024
A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser... Moderate Unreviewed
CVE-2024-8652 was published Sep 19, 2024
A vulnerability in NetCat CMS allows an attacker to send a specially crafted http request that... Moderate Unreviewed
CVE-2024-8651 was published Sep 19, 2024
A SQL injection vulnerability in linlinjava litemall 1.8.0 allows a remote attacker to obtain... Moderate Unreviewed
CVE-2024-46382 was published Sep 19, 2024
A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net... Moderate Unreviewed
CVE-2024-8354 was published Sep 19, 2024
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an... Moderate Unreviewed
CVE-2024-45770 was published Sep 19, 2024
A vulnerability was found in Performance Co-Pilot (PCP).  This flaw allows an attacker to send... Moderate Unreviewed
CVE-2024-45769 was published Sep 19, 2024
The WP Custom Fields Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-8364 was published Sep 19, 2024
The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed
CVE-2024-8850 was published Sep 19, 2024
The Limit Login Attempts Plus plugin for WordPress is vulnerable to IP Address Spoofing in... Moderate Unreviewed
CVE-2022-4533 was published Sep 19, 2024
An HTML injection vulnerability in RWS MultiTrans v7.0.23324.2 and earlier allows attackers to... Moderate Unreviewed
CVE-2024-43025 was published Sep 18, 2024
DedeCMS 5.7.115 is vulnerable to Cross Site Scripting (XSS) via the advertisement code box in the... Moderate Unreviewed
CVE-2024-46372 was published Sep 18, 2024
Multiple stored cross-site scripting (XSS) vulnerabilities in RWS MultiTrans v7.0.23324.2 and... Moderate Unreviewed
CVE-2024-43024 was published Sep 18, 2024
runofast Indoor Security Camera for Baby Monitor has a default password of password for the root... Moderate Unreviewed
CVE-2024-46959 was published Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ... Moderate Unreviewed
CVE-2024-31196 was published Sep 18, 2024
Improper Null Termination vulnerability in Open Networking Foundation (ONF) libfluid ... Moderate Unreviewed
CVE-2024-31197 was published Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg... Moderate Unreviewed
CVE-2024-31198 was published Sep 18, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database