Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,900
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

113,386 advisories

Loading
ZITADEL Allows Unauthorized Access After Organization or Project Deactivation Moderate
GHSA-jj94-6f5c-65r8 was published for github.com/zitadel/zitadel/v2 (Go) Sep 19, 2024
prdp1137 livio-a
fforootd
A SQL injection vulnerability in linlinjava litemall 1.8.0 allows a remote attacker to obtain... Moderate Unreviewed
CVE-2024-46382 was published Sep 19, 2024
A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net... Moderate Unreviewed
CVE-2024-8354 was published Sep 19, 2024
A vulnerability was found in Performance Co-Pilot (PCP).  This flaw allows an attacker to send... Moderate Unreviewed
CVE-2024-45769 was published Sep 19, 2024
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an... Moderate Unreviewed
CVE-2024-45770 was published Sep 19, 2024
The WP Custom Fields Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-8364 was published Sep 19, 2024
The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed
CVE-2024-8850 was published Sep 19, 2024
The Limit Login Attempts Plus plugin for WordPress is vulnerable to IP Address Spoofing in... Moderate Unreviewed
CVE-2022-4533 was published Sep 19, 2024
Mautic vulnerable to XSS in contact/company tracking (no authentication) Moderate
CVE-2024-47050 was published for mautic/core (Composer) Sep 18, 2024
mqrtin patrykgruszka
lenonleite escopecz
Directus vulnerable to SSRF Loopback IP filter bypass Moderate
CVE-2024-46990 was published for @directus/api (npm) Sep 18, 2024
r3dpower
Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184) Moderate
GHSA-r9cr-qmfw-pmrc was published for camaleon_cms (RubyGems) Sep 18, 2024
texpert
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ... Moderate Unreviewed
CVE-2024-31196 was published Sep 18, 2024
Improper Null Termination vulnerability in Open Networking Foundation (ONF) libfluid ... Moderate Unreviewed
CVE-2024-31197 was published Sep 18, 2024
An attacker with no knowledge of the current users in the web application, could build a... Moderate Unreviewed
CVE-2024-8891 was published Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg... Moderate Unreviewed
CVE-2024-31195 was published Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg... Moderate Unreviewed
CVE-2024-31198 was published Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg... Moderate Unreviewed
CVE-2024-31187 was published Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg... Moderate Unreviewed
CVE-2024-31191 was published Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg... Moderate Unreviewed
CVE-2024-31184 was published Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ... Moderate Unreviewed
CVE-2024-31185 was published Sep 18, 2024
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation ... Moderate Unreviewed
CVE-2024-31175 was published Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg... Moderate Unreviewed
CVE-2024-31174 was published Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg... Moderate Unreviewed
CVE-2024-31188 was published Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg... Moderate Unreviewed
CVE-2024-31171 was published Sep 18, 2024
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg... Moderate Unreviewed
CVE-2024-31176 was published Sep 18, 2024
ProTip! Advisories are also available from the GraphQL API