GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,080
Erlang
29
GitHub Actions
19
Go
1,908
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
228,823 advisories
Filter by severity
The AI ChatBot with ChatGPT and Content Generator by AYS WordPress plugin before 2.1.0 discloses...
Unknown
Unreviewed
CVE-2024-7713
was published
Sep 27, 2024
The Product Enquiry for WooCommerce, WooCommerce product catalog plugin for WordPress is...
High
Unreviewed
CVE-2024-8922
was published
Sep 27, 2024
The Absolute Reviews plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ...
Moderate
Unreviewed
CVE-2024-8965
was published
Sep 27, 2024
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to time...
High
Unreviewed
CVE-2024-9130
was published
Sep 27, 2024
The AI ChatBot with ChatGPT and Content Generator by AYS WordPress plugin before 2.1.0 lacks...
Unknown
Unreviewed
CVE-2024-7714
was published
Sep 27, 2024
Sharp NEC Projectors (NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG,...
Unknown
Unreviewed
CVE-2024-7011
was published
Sep 27, 2024
** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** Improper Restriction of...
High
Unreviewed
CVE-2023-39984
was published
Aug 23, 2023
A logic issue was addressed with improved state management. This issue is fixed in Pro Video...
High
Unreviewed
CVE-2023-29166
was published
Sep 6, 2023
A stored Cross-Site Scripting (XSS) vulnerability was identified in Projectworld Online Voting...
Moderate
Unreviewed
CVE-2024-45986
was published
Sep 26, 2024
TouchLink packets processed after timeout or out of range due to Operation on a Resource after...
Critical
Unreviewed
CVE-2023-41094
was published
Oct 4, 2023
A host header injection vulnerability in scheduleR v0.0.18 allows attackers to obtain the...
High
Unreviewed
CVE-2024-45982
was published
Sep 26, 2024
Tenda G3 Router firmware v15.03.05.05 was discovered to contain a remote code execution (RCE)...
High
Unreviewed
CVE-2024-46628
was published
Sep 26, 2024
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain...
Unknown
Unreviewed
CVE-2024-40508
was published
Sep 27, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.2...
Low
Unreviewed
CVE-2024-4099
was published
Sep 27, 2024
Information disclosure in Gitlab EE/CE affecting all versions from 15.6 prior to 17.2.8, 17.3...
Low
Unreviewed
CVE-2024-8974
was published
Sep 27, 2024
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain...
Unknown
Unreviewed
CVE-2024-40507
was published
Sep 27, 2024
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain...
Unknown
Unreviewed
CVE-2024-40506
was published
Sep 27, 2024
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3. An...
High
Unreviewed
CVE-2023-32426
was published
Sep 6, 2023
A host header injection vulnerability in Lines Police CAD 1.0 allows attackers to obtain the...
High
Unreviewed
CVE-2024-45979
was published
Sep 26, 2024
A Cross Site Scripting (XSS) vulnerability in add_donor.php of Blood Bank And Donation Management...
Moderate
Unreviewed
CVE-2024-45984
was published
Sep 26, 2024
A host header injection vulnerability in BookReviewLibrary 1.0 allows attackers to obtain the...
High
Unreviewed
CVE-2024-45981
was published
Sep 26, 2024
A Cross Site Scripting (XSS) vulnerability in update_contact.php of Blood Bank and Donation...
Moderate
Unreviewed
CVE-2024-45985
was published
Sep 26, 2024
The goTenna Pro series use AES CTR mode for short, encrypted messages without any additional...
Moderate
Unreviewed
CVE-2024-47123
was published
Sep 26, 2024
This vulnerability exists in the Apex Softcell LD Geo due to improper validation of the...
High
Unreviewed
CVE-2024-47089
was published
Sep 19, 2024
SAP NetWeaver Administrator AS Java (Administrator Log Viewer plug-in) - version 7.50, allows an...
Critical
Unreviewed
CVE-2024-22127
was published
Mar 12, 2024
ProTip!
Advisories are also available from the
GraphQL API