GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,678
Erlang
29
GitHub Actions
16
Go
1,707
Maven
4,940
npm
3,471
NuGet
603
pip
2,993
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
237,273 advisories
Filter by severity
Animate versions 23.0.4, 24.0.1 and earlier are affected by a NULL Pointer Dereference...
Moderate
Unreviewed
CVE-2024-20794
was published
Apr 11, 2024
Embedded content references at tasks could be used to temporarily execute script code in the...
Moderate
Unreviewed
CVE-2024-23189
was published
Apr 8, 2024
Upsell advertisement information of an account can be manipulated to execute script code in the...
Moderate
Unreviewed
CVE-2024-23191
was published
Apr 8, 2024
Animate versions 23.0.4, 24.0.1 and earlier are affected by an out-of-bounds read vulnerability...
Moderate
Unreviewed
CVE-2024-20796
was published
Apr 11, 2024
Animate versions 23.0.4, 24.0.1 and earlier are affected by an out-of-bounds read vulnerability...
High
Unreviewed
CVE-2024-20797
was published
Apr 11, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-32080
was published
Apr 11, 2024
The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel,...
Moderate
Unreviewed
CVE-2024-2966
was published
Apr 11, 2024
Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds read vulnerability...
Moderate
Unreviewed
CVE-2024-20798
was published
Apr 11, 2024
The Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows plugin for...
Moderate
Unreviewed
CVE-2024-3285
was published
Apr 11, 2024
A firmware bug which may lead to misinterpretation of data in the AMC2-4WCF and AMC2-2WCF...
Moderate
Unreviewed
CVE-2023-32228
was published
Apr 11, 2024
Bridge versions 13.0.6, 14.0.2 and earlier are affected by an out-of-bounds read vulnerability...
Moderate
Unreviewed
CVE-2024-20771
was published
Apr 11, 2024
Upsell shop information of an account can be manipulated to execute script code in the context of...
Moderate
Unreviewed
CVE-2024-23190
was published
Apr 8, 2024
RSS feeds that contain malicious data- attributes could be abused to inject script code to a...
Moderate
Unreviewed
CVE-2024-23192
was published
Apr 8, 2024
Insecure Win32 memory objects in Endpoint Windows Agents in RSA NetWitness Platform before 12.2...
Moderate
Unreviewed
CVE-2022-47529
was published
Mar 28, 2023
Reflected Cross Site Scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers...
Unknown
Unreviewed
CVE-2024-30879
was published
Apr 11, 2024
A cross-site scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers to...
Unknown
Unreviewed
CVE-2024-30878
was published
Apr 11, 2024
Reflected Cross-Site Scripting (XSS) vulnerability in Discuz! version X3.4 20220811, allows...
Unknown
Unreviewed
CVE-2024-30884
was published
Apr 11, 2024
An issue was discovered in GNU Savane v.3.13 and before, allows a remote attacker to execute...
Unknown
Unreviewed
CVE-2024-29399
was published
Apr 11, 2024
An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause...
Unknown
Unreviewed
CVE-2024-30916
was published
Apr 11, 2024
Reflected Cross Site Scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers...
Unknown
Unreviewed
CVE-2024-30883
was published
Apr 11, 2024
A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. It...
Moderate
Unreviewed
CVE-2024-3621
was published
Apr 11, 2024
Reflected Cross Site Scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers...
Unknown
Unreviewed
CVE-2024-30880
was published
Apr 11, 2024
An issue was discovered in OpenDDS commit b1c534032bb62ad4ae32609778de6b8d6c823a66, allows a...
Unknown
Unreviewed
CVE-2024-30915
was published
Apr 11, 2024
An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause...
Unknown
Unreviewed
CVE-2024-30917
was published
Apr 11, 2024
Reflected Cross-Site Scripting (XSS) vulnerability in HadSky v7.6.3, allows remote attackers to...
Unknown
Unreviewed
CVE-2024-30885
was published
Apr 11, 2024
ProTip!
Advisories are also available from the
GraphQL API