Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,343
Erlang
31
GitHub Actions
22
Go
2,107
Maven
5,000+
npm
3,764
NuGet
679
pip
3,452
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

264,447 advisories

Loading
Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue... Moderate Unreviewed
CVE-2024-13312 was published Jan 9, 2025
A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE. The... High Unreviewed
CVE-2024-37368 was published Jun 14, 2024
Certain Teradata account-handling code through 2024-11-04, used with SUSE Enterprise Linux Server... Moderate Unreviewed
CVE-2024-52869 was published Jan 8, 2025
An arbitrary file upload vulnerability in the MediaPool module of Redaxo CMS v5.17.1 allows... High Unreviewed
CVE-2024-46210 was published Jan 10, 2025
Incorrect Authorization vulnerability in Drupal Content Entity Clone allows Forceful Browsing... Moderate Unreviewed
CVE-2024-13271 was published Jan 9, 2025
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper parameter... Low Unreviewed
CVE-2024-0154 was published Mar 13, 2024
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper parameter... Low Unreviewed
CVE-2024-0173 was published Mar 13, 2024
In the Linux kernel, the following vulnerability has been resolved: tipc: Change nla_policy for... Moderate Unreviewed
CVE-2023-52845 was published May 21, 2024
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always drain... Moderate Unreviewed
CVE-2024-43866 was published Aug 21, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: musb: Fix hardware... Moderate Unreviewed
CVE-2024-56687 was published Dec 28, 2024
In the Linux kernel, the following vulnerability has been resolved: drm: xlnx: zynqmp_disp:... Moderate Unreviewed
CVE-2024-56537 was published Dec 27, 2024
Vulnerability in Drupal Git Utilities for Drupal.This issue affects Git Utilities for Drupal: *.*. Moderate Unreviewed
CVE-2024-13310 was published Jan 9, 2025
Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')... Moderate Unreviewed
CVE-2024-13268 was published Jan 9, 2025
When Akka HTTP before 10.5.2 accepts file uploads via the FileUploadDirectives.fileUploadAll... Moderate Unreviewed
CVE-2023-33251 was published May 21, 2023
In Talend Studio before 7.3.1-R2022-10 and 8.x before 8.0.1-R2022-09, microservices allow... High Unreviewed
CVE-2023-31444 was published Apr 28, 2023
A missing delay in popup notifications could have made it possible for an attacker to trick a... High Unreviewed
CVE-2023-32207 was published Jun 2, 2023
IBM Connect:Express for UNIX 1.5.0 is vulnerable to a buffer overflow that could allow a remote... High Unreviewed
CVE-2023-32331 was published Mar 4, 2024
A command injection vulnerability exists in local RACADM. A malicious authenticated user could... High Unreviewed
CVE-2024-25951 was published Mar 9, 2024
IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0 through 3.2.4.1... Moderate Unreviewed
CVE-2024-49349 was published Jan 31, 2025
OpenPanel v0.3.4 was discovered to contain an OS command injection vulnerability via the timezone... Unknown Unreviewed
CVE-2024-53584 was published Jan 31, 2025
A SQL injection vulnerability exists in the front-end of the website in ZZCMS <= 2023, which can... Unknown Unreviewed
CVE-2025-22957 was published Jan 31, 2025
A Host Header Injection vulnerability exists in CTFd 3.7.5, due to the application failing to... Unknown Unreviewed
CVE-2025-23001 was published Jan 31, 2025
macrozheng mall-tiny 1.0.1 suffers from Insecure Permissions. The application's JWT signing keys... Unknown Unreviewed
CVE-2024-57432 was published Jan 31, 2025
An issue in OpenPanel v0.3.4 to v0.2.1 allows attackers to execute a directory traversal in File... Unknown Unreviewed
CVE-2024-53537 was published Jan 31, 2025
SSH Communication Security PrivX versions between 18.0-36.0 implement insufficient validation on... Unknown Unreviewed
CVE-2024-47857 was published Jan 31, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database