GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,900
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
113,386 advisories
Filter by severity
ZITADEL Allows Unauthorized Access After Organization or Project Deactivation
Moderate
GHSA-jj94-6f5c-65r8
was published
for
github.com/zitadel/zitadel/v2
(Go)
Sep 19, 2024
A SQL injection vulnerability in linlinjava litemall 1.8.0 allows a remote attacker to obtain...
Moderate
Unreviewed
CVE-2024-46382
was published
Sep 19, 2024
A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net...
Moderate
Unreviewed
CVE-2024-8354
was published
Sep 19, 2024
A vulnerability was found in Performance Co-Pilot (PCP). This flaw allows an attacker to send...
Moderate
Unreviewed
CVE-2024-45769
was published
Sep 19, 2024
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an...
Moderate
Unreviewed
CVE-2024-45770
was published
Sep 19, 2024
The WP Custom Fields Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-8364
was published
Sep 19, 2024
The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-8850
was published
Sep 19, 2024
The Limit Login Attempts Plus plugin for WordPress is vulnerable to IP Address Spoofing in...
Moderate
Unreviewed
CVE-2022-4533
was published
Sep 19, 2024
Mautic vulnerable to XSS in contact/company tracking (no authentication)
Moderate
CVE-2024-47050
was published
for
mautic/core
(Composer)
Sep 18, 2024
Directus vulnerable to SSRF Loopback IP filter bypass
Moderate
CVE-2024-46990
was published
for
@directus/api
(npm)
Sep 18, 2024
Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184)
Moderate
GHSA-r9cr-qmfw-pmrc
was published
for
camaleon_cms
(RubyGems)
Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-31196
was published
Sep 18, 2024
Improper Null Termination vulnerability in Open Networking Foundation (ONF) libfluid ...
Moderate
Unreviewed
CVE-2024-31197
was published
Sep 18, 2024
An attacker with no knowledge of the current users in the web application, could build a...
Moderate
Unreviewed
CVE-2024-8891
was published
Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg...
Moderate
Unreviewed
CVE-2024-31195
was published
Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg...
Moderate
Unreviewed
CVE-2024-31198
was published
Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg...
Moderate
Unreviewed
CVE-2024-31187
was published
Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg...
Moderate
Unreviewed
CVE-2024-31191
was published
Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg...
Moderate
Unreviewed
CVE-2024-31184
was published
Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-31185
was published
Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ...
Moderate
Unreviewed
CVE-2024-31175
was published
Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg...
Moderate
Unreviewed
CVE-2024-31174
was published
Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg...
Moderate
Unreviewed
CVE-2024-31188
was published
Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg...
Moderate
Unreviewed
CVE-2024-31171
was published
Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg...
Moderate
Unreviewed
CVE-2024-31176
was published
Sep 18, 2024
ProTip!
Advisories are also available from the
GraphQL API