GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,093
Composer 4,077
Erlang 29
GitHub Actions 19
Go 1,902
Maven 5,100
npm 3,631
NuGet 638
pip 3,246
Pub 10
RubyGems 863
Rust 818
Swift 35

Unreviewed advisories

All unreviewed 228,434

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

19,960 advisories

Filter by severity

Sort by

Least recently updated

Buffer Overflow vulnerability in btstack mesh commit before v... Critical Unreviewed

CVE-2024-40568 was published Sep 18, 2024

Best House Rental Management System 1.0 contains a SQL injection vulnerability in the... Critical Unreviewed

CVE-2024-46374 was published Sep 18, 2024

Pluck CMS 4.7.18 does not restrict failed login attempts, allowing attackers to execute a brute... Critical Unreviewed

CVE-2024-43042 was published Aug 16, 2024

Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10... Critical Unreviewed

CVE-2024-33109 was published Sep 19, 2024

An issue was discovered in Mbed TLS 3.x before 3.6.1. With TLS 1.3, when a server enables... Critical Unreviewed

CVE-2024-45159 was published Sep 5, 2024

Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection.This... Critical Unreviewed

CVE-2024-7591 was published Sep 5, 2024

Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the... Critical Unreviewed

CVE-2024-46377 was published Sep 18, 2024

Improper Input Validation vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise,... Critical Unreviewed

CVE-2023-0636 was published Jul 6, 2023

Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to... Critical Unreviewed

CVE-2024-8963 was published Sep 19, 2024

Kastle Systems firmware prior to May 1, 2024, contained a hard-coded credential, which if... Critical Unreviewed

CVE-2024-45861 was published Sep 19, 2024

HP LIFE Android Mobile application is potentially vulnerable to escalation of privilege and/or... Critical Unreviewed

CVE-2023-5365 was published Oct 9, 2023

Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the... Critical Unreviewed

CVE-2024-46375 was published Sep 18, 2024

Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the... Critical Unreviewed

CVE-2024-46376 was published Sep 18, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Critical Unreviewed

CVE-2024-7785 was published Sep 19, 2024

Improper Privilege Management vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise,... Critical Unreviewed

CVE-2023-0635 was published Jul 6, 2023

Vulnerability of undefined permissions in the MeeTime module.Successful exploitation of this... Critical Unreviewed

CVE-2023-44118 was published Oct 11, 2023

SQL Injection vulnerability in gnuboard5 <=v5.3.2.8 via the table_prefix parameter in install_db... Critical Unreviewed

CVE-2020-18662 was published May 24, 2022

This vulnerability exists in Apex Softcell LD Geo due to missing restrictions for excessive... Critical Unreviewed

CVE-2024-47088 was published Sep 19, 2024

SQL Injection vulnerability in Best Free Law Office Management Software-v1.0 allows an attacker... Critical Unreviewed

CVE-2024-44430 was published Sep 13, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Critical Unreviewed

CVE-2024-7609 was published Sep 11, 2024

This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing restrictions for... Critical Unreviewed

CVE-2024-45790 was published Sep 11, 2024

A unauthenticated SQL Injection has been found in the SO Planning tool that occurs when the... Critical Unreviewed

CVE-2024-27112 was published Sep 11, 2024

**UNSUPPORTED WHEN ASSIGNED** An issue was discovered in BMC Remedy Mid Tier 7.6.04. An... Critical Unreviewed

CVE-2024-34399 was published Sep 18, 2024

SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code... Critical Unreviewed

CVE-2024-44542 was published Sep 18, 2024

Files or Directories Accessible to External Parties vulnerability in Eliz Software Panel allows... Critical Unreviewed

CVE-2024-6878 was published Sep 18, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

19,960 advisories