GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,179

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

111,587 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A flaw was found in FFmpeg's HLS playlist parsing. This vulnerability allows a denial of service... High Unreviewed

CVE-2023-6603 was published Dec 31, 2024

Cross-Site Request Forgery (CSRF) vulnerability in George Holmes II Wayne Audio Player allows... High Unreviewed

CVE-2024-56203 was published Dec 31, 2024

Missing Authorization vulnerability in Webful Creations Computer Repair Shop allows Privilege... High Unreviewed

CVE-2024-56061 was published Dec 31, 2024

Missing Authorization vulnerability in Azzaroco WP SuperBackup allows Exploiting Incorrectly... High Unreviewed

CVE-2024-56067 was published Dec 31, 2024

Deserialization of Untrusted Data vulnerability in Azzaroco WP SuperBackup.This issue affects WP... High Unreviewed

CVE-2024-56068 was published Dec 31, 2024

Missing Authorization vulnerability in Azzaroco WP SuperBackup allows Exploiting Incorrectly... High Unreviewed

CVE-2024-56070 was published Dec 31, 2024

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2024-56041 was published Dec 31, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-56265 was published Dec 31, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-56226 was published Dec 31, 2024

Missing Authorization vulnerability in DeluxeThemes Userpro.This issue affects Userpro: from n/a... High Unreviewed

CVE-2024-56211 was published Dec 31, 2024

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2024-56212 was published Dec 31, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-56223 was published Dec 31, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-56209 was published Dec 31, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-56210 was published Dec 31, 2024

Path Traversal: '.../...//' vulnerability in DeluxeThemes Userpro allows Path Traversal.This... High Unreviewed

CVE-2024-56214 was published Dec 31, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-56230 was published Dec 31, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Alexander Volkov WP Nice Loader allows Stored... High Unreviewed

CVE-2024-56232 was published Dec 31, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-56233 was published Dec 31, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-56228 was published Dec 31, 2024

The passwordless login mechanism in CGFIDO from Changing Information Technology has an... High Unreviewed

CVE-2024-12838 was published Dec 31, 2024

The QOCA aim from Quanta Computer has an Authorization Bypass Through User-Controlled Key... High Unreviewed

CVE-2024-13040 was published Dec 31, 2024

The login mechanism via device authentication of CGFIDO from Changing Information Technology has... High Unreviewed

CVE-2024-12839 was published Dec 31, 2024

A flaw was found in the OpenShift build process, where the docker-build container is configured... High Unreviewed

CVE-2024-45497 was published Dec 31, 2024

Foxit PDF Reader AcroForm Memory Corruption Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2024-12752 was published Dec 30, 2024

Foxit PDF Reader AcroForm Out-Of-Bounds Read Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2024-12751 was published Dec 30, 2024

Previous 1…391…400 Next

Previous 1 2 … 389 390 391 392 393 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

111,587 advisories