GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,998
Maven
5,000+
npm
3,710
NuGet
661
pip
3,364
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
235,084 advisories
Filter by severity
A potential security vulnerability has been identified in the HPE NonStop DISK UTIL (T9208)...
Moderate
Unreviewed
CVE-2024-51766
was published
Nov 22, 2024
IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1030.00...
Moderate
Unreviewed
CVE-2024-41781
was published
Nov 22, 2024
IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2 and 7.0.3 could allow a remote...
Critical
Unreviewed
CVE-2024-41779
was published
Nov 22, 2024
Possible out of bound access in audio module due to lack of validation of user provided input.
Moderate
Unreviewed
CVE-2021-30299
was published
Nov 22, 2024
Certain unprivileged processes are able to perform IOCTL calls.
Moderate
Unreviewed
CVE-2017-9711
was published
Nov 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Moderate
Unreviewed
CVE-2024-7882
was published
Nov 22, 2024
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post...
High
Unreviewed
CVE-2024-11104
was published
Nov 22, 2024
The Control horas plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-11381
was published
Nov 22, 2024
The GEO my WP WordPress plugin before 4.5, gmw-premium-settings WordPress plugin before 3.1 does...
Unknown
Unreviewed
CVE-2024-9422
was published
Nov 22, 2024
The Easy Twitter Feed – Twitter feeds plugin for WP plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-10666
was published
Nov 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-7837
was published
Nov 22, 2024
The Premium Packages – Sell Digital Products Securely plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11225
was published
Nov 22, 2024
The MailMunch – Grow your Email List plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-8735
was published
Nov 22, 2024
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post...
High
Unreviewed
CVE-2024-11601
was published
Nov 22, 2024
The Ultimate YouTube Video & Shorts Player With Vimeo plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-11355
was published
Nov 22, 2024
The Gallery Blocks with Lightbox. Image Gallery, (HTML5 video , YouTube, Vimeo) Video Gallery and...
Moderate
Unreviewed
CVE-2024-10034
was published
Nov 22, 2024
Insufficiently protected credentials issue exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network...
Moderate
Unreviewed
CVE-2024-39290
was published
Nov 22, 2024
Use of hard-coded cryptographic key issue exists in AIPHONE IX SYSTEM, IXG SYSTEM, and System...
Moderate
Unreviewed
CVE-2024-45837
was published
Nov 22, 2024
AIPHONE IXG SYSTEM IXG-2C7 firmware Ver.2.03 and earlier and IXG-2C7-L firmware Ver.2.03 and...
Moderate
Unreviewed
CVE-2024-47142
was published
Nov 22, 2024
Dell Edge Gateway 5200 (Coffee Lake S), versions prior to 12.0.94.2380, contains an Exposure of...
Moderate
Unreviewed
CVE-2024-38296
was published
Nov 22, 2024
The Media File Rename, Find Unused File, Add Alt text, Caption, Desc For Image SEO WordPress...
Moderate
Unreviewed
CVE-2024-10482
was published
Nov 22, 2024
Stored Cross-Site Scripting in the Manager component of Wowza Streaming Engine below 4.9.1 allows...
High
Unreviewed
CVE-2024-52053
was published
Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
Moderate
Unreviewed
CVE-2024-52054
was published
Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
Moderate
Unreviewed
CVE-2024-52056
was published
Nov 22, 2024
Wowza Streaming Engine below 4.9.1 permits an authenticated Streaming Engine Manager...
Critical
Unreviewed
CVE-2024-52052
was published
Nov 22, 2024
ProTip!
Advisories are also available from the
GraphQL API