GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,080
Erlang
29
GitHub Actions
19
Go
1,908
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,298 advisories
Filter by severity
IBM webMethods Integration 10.15 could allow an authenticated user to upload and execute...
Critical
Unreviewed
CVE-2024-45076
was published
Sep 4, 2024
MCMS v5.4.1 has front-end file upload vulnerability which can lead to remote command execution.
High
Unreviewed
CVE-2024-42991
was published
Sep 3, 2024
A vulnerability, which was classified as critical, has been found in SourceCodester Petshop...
Moderate
Unreviewed
CVE-2024-8342
was published
Aug 30, 2024
A vulnerability classified as critical was found in SourceCodester Petshop Management System 1.0....
Moderate
Unreviewed
CVE-2024-8341
was published
Aug 30, 2024
A vulnerability was found in HFO4 shudong-share 2.4.7. It has been declared as critical. Affected...
Moderate
Unreviewed
CVE-2024-8338
was published
Aug 30, 2024
6SHR system from Gether Technology does not properly validate uploaded file types, allowing...
High
Unreviewed
CVE-2024-8330
was published
Aug 30, 2024
FeehiCMS User[avatar] unrestricted upload
Moderate
CVE-2024-8296
was published
for
feehi/cms
(Composer)
Aug 29, 2024
FeehiCMS file upload vulnerability
Moderate
CVE-2024-8294
was published
for
feehi/cms
(Composer)
Aug 29, 2024
FeehiCMS BannerForm[img] unrestricted upload
Moderate
CVE-2024-8295
was published
for
feehi/cms
(Composer)
Aug 29, 2024
The Funnelforms Free plugin for WordPress is vulnerable to arbitrary file uploads due to missing...
High
Unreviewed
CVE-2024-6311
was published
Aug 28, 2024
A vulnerability classified as problematic has been found in SourceCodester Zipped Folder Manager...
Moderate
Unreviewed
CVE-2024-8170
was published
Aug 26, 2024
A vulnerability, which was classified as critical, has been found in Chengdu Everbrite Network...
Moderate
Unreviewed
CVE-2024-8164
was published
Aug 26, 2024
A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™...
High
Unreviewed
CVE-2024-7987
was published
Aug 26, 2024
A vulnerability has been found in Ruijie EG2000K 11.1(6)B2 and classified as critical. This...
Moderate
Unreviewed
CVE-2024-8166
was published
Aug 26, 2024
publiccms V4.0.202302.e and before is vulnerable to Any File Upload via publiccms/admin...
High
Unreviewed
CVE-2024-42523
was published
Aug 23, 2024
A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been classified as...
Moderate
Unreviewed
CVE-2024-8089
was published
Aug 23, 2024
The Versa Director GUI provides an option to customize the look and feel of the user interface....
Moderate
Unreviewed
CVE-2024-39717
was published
Aug 22, 2024
Kashipara Hotel Management System v1.0 is vulnerable to Unrestricted File Upload RCE via /admin...
High
Unreviewed
CVE-2024-42767
was published
Aug 22, 2024
The AcyMailing – An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress...
High
Unreviewed
CVE-2024-7384
was published
Aug 22, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=save_music" in...
High
Unreviewed
CVE-2024-42779
was published
Aug 21, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=save_playlist" in...
High
Unreviewed
CVE-2024-42778
was published
Aug 21, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=signup" of...
Critical
Unreviewed
CVE-2024-42777
was published
Aug 21, 2024
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=save_genre" in...
High
Unreviewed
CVE-2024-42780
was published
Aug 21, 2024
An arbitrary file upload vulnerability in ERP commit 44bd04 allows attackers to execute arbitrary...
Critical
Unreviewed
CVE-2024-42563
was published
Aug 20, 2024
The AdRotate Banner Manager – The only ad manager you'll need plugin for WordPress is vulnerable...
High
Unreviewed
CVE-2022-1206
was published
Aug 20, 2024
ProTip!
Advisories are also available from the
GraphQL API