GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
843 advisories
Filter by severity
An issue was discovered in Logpoint before 7.4.0. Due to a lack of input validation on URLs in...
Critical
Unreviewed
CVE-2024-33857
was published
May 7, 2024
TwoNav 2.1.13 contains an SSRF vulnerability via the url paramater to index.php?c=api&method...
Moderate
Unreviewed
CVE-2024-34453
was published
May 3, 2024
An issue was discovered in Teledyne FLIR M300 2.00-19. Unauthenticated remote code execution can...
Critical
Unreviewed
CVE-2023-46295
was published
May 1, 2024
OneNav v0.9.35-20240318 was discovered to contain a Server-Side Request Forgery (SSRF) via the...
Moderate
Unreviewed
CVE-2024-33832
was published
Apr 30, 2024
Server-Side Request Forgery (SSRF) vulnerability in codeSavory Knowledge Base documentation &...
Moderate
Unreviewed
CVE-2024-33590
was published
Apr 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in Cusmin Absolutely Glamorous Custom Admin.This...
Moderate
Unreviewed
CVE-2024-33627
was published
Apr 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in Creative Motion Auto Featured Image (Auto...
Moderate
Unreviewed
CVE-2024-33629
was published
Apr 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in Piotnet Piotnet Addons For Elementor Pro.This...
Moderate
Unreviewed
CVE-2024-33634
was published
Apr 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in SoftLab Radio Player.This issue affects Radio...
Moderate
Unreviewed
CVE-2024-33592
was published
Apr 25, 2024
Server-Side Request Forgery (SSRF) vulnerability in 2day.Sk, Webikon SuperFaktura WooCommerce...
Moderate
Unreviewed
CVE-2024-32803
was published
Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Podlove Podlove Podcast Publisher.This issue...
Moderate
Unreviewed
CVE-2024-32812
was published
Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Foliovision FV Flowplayer Video Player.This...
Moderate
Unreviewed
CVE-2024-32955
was published
Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Pavex Embed Google Photos album.This issue...
Moderate
Unreviewed
CVE-2024-32775
was published
Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Webangon The Pack Elementor.This issue...
Moderate
Unreviewed
CVE-2024-32718
was published
Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Culqi.This issue affects Culqi: from n/a...
Moderate
Unreviewed
CVE-2024-32819
was published
Apr 24, 2024
An issue in inducer relate before v.2024.1 allows a remote attacker to execute arbitrary code via...
High
Unreviewed
CVE-2024-32407
was published
Apr 22, 2024
A server-side request forgery (SSRF) was discovered in the Akana Community Manager Developer...
Critical
Unreviewed
CVE-2024-2796
was published
Apr 18, 2024
Server-Side Request Forgery (SSRF) vulnerability in Really Simple Plugins Really Simple SSL.This...
Moderate
Unreviewed
CVE-2024-31229
was published
Apr 18, 2024
IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3...
Moderate
Unreviewed
CVE-2024-22329
was published
Apr 17, 2024
Server-Side Request Forgery (SSRF) vulnerability in Wappointment Appointment Bookings for Zoom...
Moderate
Unreviewed
CVE-2024-32454
was published
Apr 15, 2024
Server-Side Request Forgery (SSRF) vulnerability in ActiveCampaign.This issue affects...
Moderate
Unreviewed
CVE-2024-32430
was published
Apr 15, 2024
Users with low privileges can perform certain AJAX actions. In this vulnerability instance,...
Moderate
Unreviewed
CVE-2024-3448
was published
Apr 10, 2024
Server-side request forgery (SSRF) in PingFederate allows unauthenticated http requests to attack...
Moderate
Unreviewed
CVE-2023-40148
was published
Apr 10, 2024
SAP NetWeaver application, due to insufficient input validation, allows an attacker to send a...
Moderate
Unreviewed
CVE-2024-27898
was published
Apr 9, 2024
Server-Side Request Forgery (SSRF) vulnerability in RapidLoad RapidLoad Power-Up for Autoptimize...
High
Unreviewed
CVE-2024-31288
was published
Apr 7, 2024
ProTip!
Advisories are also available from the
GraphQL API