GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,998
Maven
5,000+
npm
3,710
NuGet
661
pip
3,364
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
92,480 advisories
Filter by severity
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post...
High
Unreviewed
CVE-2024-11104
was published
Nov 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-7837
was published
Nov 22, 2024
The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post...
High
Unreviewed
CVE-2024-11601
was published
Nov 22, 2024
Stored Cross-Site Scripting in the Manager component of Wowza Streaming Engine below 4.9.1 allows...
High
Unreviewed
CVE-2024-52053
was published
Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
High
Unreviewed
CVE-2024-52055
was published
Nov 22, 2024
OS command injection vulnerability exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network-adjacent...
High
Unreviewed
CVE-2024-31408
was published
Nov 22, 2024
TOTOLINK A810R V4.1.2cu.5182_B20201026 is vulnerable to Buffer Overflow in infostat.cgi.
High
Unreviewed
CVE-2024-53334
was published
Nov 21, 2024
Linksys E3000 1.0.06.002_US is vulnerable to command injection via the diag_ping_start function.
High
Unreviewed
CVE-2024-48286
was published
Nov 21, 2024
D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution (RCE)...
High
Unreviewed
CVE-2024-52739
was published
Nov 20, 2024
In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer...
High
Unreviewed
CVE-2018-9472
was published
Nov 20, 2024
In l2cu_send_peer_config_rej of l2c_utils.cc, there is a possible out of bounds read due to a...
High
Unreviewed
CVE-2018-9484
was published
Nov 20, 2024
In the development options section of the Settings app, there is a possible authentication bypass...
High
Unreviewed
CVE-2018-9477
was published
Nov 20, 2024
In query of DownloadManager.java, there is a possible read/write of arbitrary files due to a...
High
Unreviewed
CVE-2018-9468
was published
Nov 20, 2024
In bff_Scanner_addOutPos of Scanner.c, there is a possible out-of-bounds write due to an...
High
Unreviewed
CVE-2018-9470
was published
Nov 20, 2024
In HeadsetInterface::ClccResponse of btif_hf.cc, there is a possible out of bounds stack write...
High
Unreviewed
CVE-2018-9475
was published
Nov 20, 2024
In multiple functions of ShortcutService.java, there is a possible creation of a spoofed shortcut...
High
Unreviewed
CVE-2018-9469
was published
Nov 20, 2024
In writeToParcel of MediaPlayer.java, there is a possible serialization/deserialization mismatch...
High
Unreviewed
CVE-2018-9474
was published
Nov 20, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
High
Unreviewed
CVE-2024-52471
was published
Nov 20, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
High
Unreviewed
CVE-2024-52473
was published
Nov 20, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
High
Unreviewed
CVE-2024-52472
was published
Nov 20, 2024
The Clone plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and...
High
Unreviewed
CVE-2024-10913
was published
Nov 20, 2024
Buffer overflow vulnerability in OllyDbg, version 1.10, which could allow a local attacker to...
High
Unreviewed
CVE-2024-11495
was published
Nov 20, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
High
Unreviewed
CVE-2024-52470
was published
Nov 20, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-52448
was published
Nov 20, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-52444
was published
Nov 20, 2024
ProTip!
Advisories are also available from the
GraphQL API