Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,678
Erlang
29
GitHub Actions
16
Go
1,707
Maven
4,940
npm
3,471
NuGet
603
pip
2,993
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+

237,273 advisories

Animate versions 23.0.4, 24.0.1 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed
CVE-2024-20794 was published Apr 11, 2024
Embedded content references at tasks could be used to temporarily execute script code in the... Moderate Unreviewed
CVE-2024-23189 was published Apr 8, 2024
Upsell advertisement information of an account can be manipulated to execute script code in the... Moderate Unreviewed
CVE-2024-23191 was published Apr 8, 2024
Animate versions 23.0.4, 24.0.1 and earlier are affected by an out-of-bounds read vulnerability... Moderate Unreviewed
CVE-2024-20796 was published Apr 11, 2024
Animate versions 23.0.4, 24.0.1 and earlier are affected by an out-of-bounds read vulnerability... High Unreviewed
CVE-2024-20797 was published Apr 11, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-32080 was published Apr 11, 2024
The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel,... Moderate Unreviewed
CVE-2024-2966 was published Apr 11, 2024
Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds read vulnerability... Moderate Unreviewed
CVE-2024-20798 was published Apr 11, 2024
The Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows plugin for... Moderate Unreviewed
CVE-2024-3285 was published Apr 11, 2024
A firmware bug which may lead to misinterpretation of data in the AMC2-4WCF and AMC2-2WCF... Moderate Unreviewed
CVE-2023-32228 was published Apr 11, 2024
Bridge versions 13.0.6, 14.0.2 and earlier are affected by an out-of-bounds read vulnerability... Moderate Unreviewed
CVE-2024-20771 was published Apr 11, 2024
Upsell shop information of an account can be manipulated to execute script code in the context of... Moderate Unreviewed
CVE-2024-23190 was published Apr 8, 2024
RSS feeds that contain malicious data- attributes could be abused to inject script code to a... Moderate Unreviewed
CVE-2024-23192 was published Apr 8, 2024
Insecure Win32 memory objects in Endpoint Windows Agents in RSA NetWitness Platform before 12.2... Moderate Unreviewed
CVE-2022-47529 was published Mar 28, 2023
Reflected Cross Site Scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers... Unknown Unreviewed
CVE-2024-30879 was published Apr 11, 2024
A cross-site scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers to... Unknown Unreviewed
CVE-2024-30878 was published Apr 11, 2024
Reflected Cross-Site Scripting (XSS) vulnerability in Discuz! version X3.4 20220811, allows... Unknown Unreviewed
CVE-2024-30884 was published Apr 11, 2024
An issue was discovered in GNU Savane v.3.13 and before, allows a remote attacker to execute... Unknown Unreviewed
CVE-2024-29399 was published Apr 11, 2024
An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause... Unknown Unreviewed
CVE-2024-30916 was published Apr 11, 2024
Reflected Cross Site Scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers... Unknown Unreviewed
CVE-2024-30883 was published Apr 11, 2024
A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. It... Moderate Unreviewed
CVE-2024-3621 was published Apr 11, 2024
Reflected Cross Site Scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers... Unknown Unreviewed
CVE-2024-30880 was published Apr 11, 2024
An issue was discovered in OpenDDS commit b1c534032bb62ad4ae32609778de6b8d6c823a66, allows a... Unknown Unreviewed
CVE-2024-30915 was published Apr 11, 2024
An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause... Unknown Unreviewed
CVE-2024-30917 was published Apr 11, 2024
Reflected Cross-Site Scripting (XSS) vulnerability in HadSky v7.6.3, allows remote attackers to... Unknown Unreviewed
CVE-2024-30885 was published Apr 11, 2024
ProTip! Advisories are also available from the GraphQL API