Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

103,267 advisories

Loading
The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to SQL... High Unreviewed
CVE-2024-11728 was published Dec 6, 2024
The Verowa Connect plugin for WordPress is vulnerable to SQL Injection via the 'search_string'... High Unreviewed
CVE-2024-11460 was published Dec 6, 2024
In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename... High Unreviewed
CVE-2024-53142 was published Dec 6, 2024
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add... High Unreviewed
CVE-2024-53141 was published Dec 6, 2024
The AI Quiz | Quiz Maker plugin for WordPress is vulnerable to unauthorized modification of data... High Unreviewed
CVE-2024-11323 was published Dec 6, 2024
The Login With OTP plugin for WordPress is vulnerable to authentication bypass in versions up to,... High Unreviewed
CVE-2024-11178 was published Dec 6, 2024
The WP Hide & Security Enhancer plugin for WordPress is vulnerable to arbitrary file contents... High Unreviewed
CVE-2024-11585 was published Dec 6, 2024
The Video Gallery – Best WordPress YouTube Gallery Plugin plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-10247 was published Dec 6, 2024
The Pubnews theme for WordPress is vulnerable to unauthorized arbitrary plugin installation due... High Unreviewed
CVE-2024-10578 was published Dec 6, 2024
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble version was discovered to contain... High Unreviewed
CVE-2024-38910 was published Dec 6, 2024
Buffer Overflow vulnerability in Open Robotic Robotic Operating System 2 ROS2 navigation2- ROS2... High Unreviewed
CVE-2024-37862 was published Dec 6, 2024
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2... High Unreviewed
CVE-2024-30964 was published Dec 6, 2024
Buffer Overflow vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2-... High Unreviewed
CVE-2024-30963 was published Dec 6, 2024
Buffer Overflow vulnerability in Open Robotic Operating System 2 ROS2 navigation2- ROS2-humble&&... High Unreviewed
CVE-2024-37860 was published Dec 6, 2024
Buffer Overflow vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2-... High Unreviewed
CVE-2024-30962 was published Dec 6, 2024
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2... High Unreviewed
CVE-2024-30961 was published Dec 6, 2024
In store_upgrade and store_cmd of drivers/input/touchscreen/stm/ftm4_pdc.c, there are out of... High Unreviewed
CVE-2018-9388 was published Dec 6, 2024
In OpenBSD 7.4 before errata 006 and OpenBSD 7.3 before errata 020, httpd(8) is vulnerable to a... High Unreviewed
CVE-2024-11148 was published Dec 5, 2024
GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD (Binary File Descriptor) library's... High Unreviewed
CVE-2024-53589 was published Dec 5, 2024
JSFinder commit d70ab9bc5221e016c08cffaf0d9ac79646c90645 is vulnerable to Directory Traversal in... High Unreviewed
CVE-2024-53523 was published Dec 5, 2024
A “use after free” code execution vulnerability exists in the Rockwell Automation Arena® that... High Unreviewed
CVE-2024-11155 was published Dec 5, 2024
Favorites-web 1.3.0 favorites-web has a directory traversal vulnerability in SecurityFilter.java. High Unreviewed
CVE-2024-53490 was published Dec 5, 2024
An “out of bounds read” code execution vulnerability exists in the Rockwell Automation Arena® ... High Unreviewed
CVE-2024-12130 was published Dec 5, 2024
An “out of bounds write” code execution vulnerability exists in the Rockwell Automation Arena® ... High Unreviewed
CVE-2024-11156 was published Dec 5, 2024
An “uninitialized variable” code execution vulnerability exists in the Rockwell Automation... High Unreviewed
CVE-2024-11158 was published Dec 5, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database