GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,974
Erlang
29
GitHub Actions
16
Go
1,763
Maven
4,988
npm
3,525
NuGet
615
pip
3,099
Pub
10
RubyGems
834
Rust
785
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
222,227 advisories
Filter by severity
In multiple locations, there is a possible information leak due to a missing permission check....
Unknown
Unreviewed
CVE-2024-31312
was published
Jul 9, 2024
In RGXCreateZSBufferKM of rgxta3d.c, there is a possible arbitrary code execution due to a use...
Unknown
Unreviewed
CVE-2024-23696
was published
Jul 9, 2024
A vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung Mobile...
Moderate
Unreviewed
CVE-2024-27385
was published
Jul 9, 2024
In multiple functions of ManagedServices.java, there is a possible way to hide an app with...
Unknown
Unreviewed
CVE-2024-31315
was published
Jul 9, 2024
In RGXFWChangeOSidPriority of rgxfwutils.c, there is a possible arbitrary code execution due to a...
Unknown
Unreviewed
CVE-2024-23698
was published
Jul 9, 2024
In multiple locations, there is a possible way to reveal images across users data due to a logic...
Unknown
Unreviewed
CVE-2024-31325
was published
Jul 9, 2024
In onResult of AccountManagerService.java, there is a possible way to perform an arbitrary...
Unknown
Unreviewed
CVE-2024-31316
was published
Jul 9, 2024
A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled...
Low
Unreviewed
CVE-2024-6501
was published
Jul 9, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Unknown
Unreviewed
CVE-2024-40038
was published
Jul 9, 2024
InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by a Heap-based Buffer...
High
Unreviewed
CVE-2024-20785
was published
Jul 9, 2024
Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an out-of-bounds read...
Moderate
Unreviewed
CVE-2024-34140
was published
Jul 9, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Unknown
Unreviewed
CVE-2024-40039
was published
Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processor Exynos 850, Exynos 9610, Exynos 980,...
Moderate
Unreviewed
CVE-2024-27363
was published
Jul 9, 2024
Lime Survey <= 6.5.12 is vulnerable to Cross Site Request Forgery (CSRF). The YII_CSRF_TOKEN is...
Unknown
Unreviewed
CVE-2024-39063
was published
Jul 9, 2024
InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by a Heap-based Buffer...
High
Unreviewed
CVE-2024-20783
was published
Jul 9, 2024
An issue in Outline <= v0.76.1 allows attackers to redirect a victim user to a malicious site via...
Unknown
Unreviewed
CVE-2024-37830
was published
Jul 9, 2024
SQL injection vulnerability in login.php in Itsourcecode Online Discussion Forum Project in PHP...
Unknown
Unreviewed
CVE-2024-37871
was published
Jul 9, 2024
InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-20782
was published
Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processor Exynos 980, Exynos 990, Exynos 1080,...
Moderate
Unreviewed
CVE-2024-27361
was published
Jul 9, 2024
Linksys Velop Pro 6E 1.0.8 MX6200_1.0.8.215731 and 7 1.0.10.215314 devices send cleartext Wi-Fi...
Unknown
Unreviewed
CVE-2024-40750
was published
Jul 9, 2024
A vulnerability was discovered in SS in Samsung Mobile Processor, Wearable Processor, and Modems...
Moderate
Unreviewed
CVE-2024-28068
was published
Jul 9, 2024
InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by a Heap-based Buffer...
High
Unreviewed
CVE-2024-20781
was published
Jul 9, 2024
SQL injection vulnerability in process.php in Itsourcecode Billing System in PHP 1.0 allows...
Unknown
Unreviewed
CVE-2024-37872
was published
Jul 9, 2024
A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with...
High
Unreviewed
CVE-2024-29153
was published
Jul 9, 2024
Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an Integer Overflow or...
High
Unreviewed
CVE-2024-34139
was published
Jul 9, 2024
ProTip!
Advisories are also available from the
GraphQL API