Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

120,196 advisories

Loading
MENDELSON AS4 before 2024 B376 has a client-side vulnerability when a trading partner provides... Moderate Unreviewed
CVE-2024-39334 was published Jun 24, 2024
Remote Code Execution in create_conda_env function in lollms Moderate
CVE-2024-3121 was published for lollms (pip) Jun 24, 2024
A vulnerability was found in SourceCodester Clinic Queuing System 1.0. It has been declared as... Moderate Unreviewed
CVE-2024-6273 was published Jun 24, 2024
A Path Traversal vulnerability exists in the parisneo/lollms-webui, specifically within the ... Moderate Unreviewed
CVE-2024-4841 was published Jun 23, 2024
A vulnerability, which was classified as critical, has been found in lahirudanushka School... Moderate Unreviewed
CVE-2024-6268 was published Jun 23, 2024
A vulnerability has been found in Ruijie RG-UAC 1.0 and classified as critical. This... Moderate Unreviewed
CVE-2024-6269 was published Jun 23, 2024
A vulnerability classified as problematic was found in SourceCodester Service Provider Management... Moderate Unreviewed
CVE-2024-6267 was published Jun 23, 2024
A vulnerability classified as critical has been found in Pear Admin Boot up to 2.0.2. Affected is... Moderate Unreviewed
CVE-2024-6266 was published Jun 23, 2024
A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as... Moderate Unreviewed
CVE-2024-6253 was published Jun 22, 2024
A vulnerability, which was classified as problematic, was found in playSMS 1.4.3. Affected is an... Moderate Unreviewed
CVE-2024-6251 was published Jun 22, 2024
A vulnerability has been found in Zorlan SkyCaiji up to 2.8 and classified as problematic.... Moderate Unreviewed
CVE-2024-6252 was published Jun 22, 2024
Apache Allura's neighborhood settings are vulnerable to a stored XSS attack.  Only neighborhood... Moderate Unreviewed
CVE-2024-38379 was published Jun 22, 2024
The ARMember Premium plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions... Moderate Unreviewed
CVE-2024-5596 was published Jun 22, 2024
The Bricks Builder plugin for WordPress is vulnerable to Insecure Direct Object Reference in all... Moderate Unreviewed
CVE-2024-4874 was published Jun 22, 2024
Open redirect in gradio Moderate
CVE-2024-4940 was published for gradio (pip) Jun 22, 2024
The Grey Opaque theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’... Moderate Unreviewed
CVE-2024-5966 was published Jun 22, 2024
Cross site scripting in opencart Moderate
CVE-2024-21517 was published for opencart/opencart (Composer) Jun 22, 2024
Cross site scripting in opencart Moderate
CVE-2024-21515 was published for opencart/opencart (Composer) Jun 22, 2024
The Mosaic theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’... Moderate Unreviewed
CVE-2024-5965 was published Jun 22, 2024
Cross site scripting in opencart Moderate
CVE-2024-21516 was published for opencart/opencart (Composer) Jun 22, 2024
The Table Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-4313 was published Jun 22, 2024
The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-2484 was published Jun 22, 2024
The Flatsome theme for WordPress is vulnerable to Stored Cross-Site Scripting via the UX... Moderate Unreviewed
CVE-2024-5346 was published Jun 22, 2024
The Sparkle Demo Importer plugin for WordPress is vulnerable to unauthorized database reset and... Moderate Unreviewed
CVE-2024-6120 was published Jun 22, 2024
An issue in BAS-IP AV-01D, AV-01MD, AV-01MFD, AV-01ED, AV-01KD, AV-01BD, AV-01KBD, AV-02D, AV... Moderate Unreviewed
CVE-2024-37654 was published Jun 22, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database