GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,653
Erlang
29
GitHub Actions
16
Go
1,706
Maven
4,938
npm
3,471
NuGet
603
pip
2,985
Pub
10
RubyGems
826
Rust
772
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
218,385 advisories
Filter by severity
An issue in the component AsIO64.sys of ASUSTeK Computer Inc ASUS SABERTOOTH X99 Driver v1.0.1.0...
Unknown
Unreviewed
CVE-2024-33219
was published
May 22, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
Unknown
Unreviewed
CVE-2024-35559
was published
May 22, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
Unknown
Unreviewed
CVE-2024-35550
was published
May 22, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
Unknown
Unreviewed
CVE-2024-35552
was published
May 22, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
Unknown
Unreviewed
CVE-2024-35551
was published
May 22, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
Unknown
Unreviewed
CVE-2024-35553
was published
May 22, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
Unknown
Unreviewed
CVE-2024-35554
was published
May 22, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
Unknown
Unreviewed
CVE-2024-35555
was published
May 22, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
Unknown
Unreviewed
CVE-2024-35556
was published
May 22, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
Unknown
Unreviewed
CVE-2024-35557
was published
May 22, 2024
A Cross-Site Request Forgery (CSRF) vulnerability was discovered in OpenKM Community Edition on...
Unknown
Unreviewed
CVE-2024-35475
was published
May 22, 2024
WeBid 1.1.2 is vulnerable to SQL Injection via admin/tax.php.
Unknown
Unreviewed
CVE-2024-35409
was published
May 22, 2024
The Responsive Contact Form Builder & Lead Generation Plugin plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2024-4261
was published
May 22, 2024
A vulnerability was found in Arris VAP2500 08.50. It has been rated as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-5195
was published
May 22, 2024
A vulnerability was found in Arris VAP2500 08.50. It has been declared as critical. Affected by...
Moderate
Unreviewed
CVE-2024-5194
was published
May 22, 2024
A vulnerability classified as critical has been found in Arris VAP2500 08.50. This affects an...
Moderate
Unreviewed
CVE-2024-5196
was published
May 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
igb: Fix string truncation...
Unknown
Unreviewed
CVE-2024-36010
was published
May 22, 2024
A vulnerability was found in Ritlabs TinyWeb Server 1.94. It has been classified as problematic....
Moderate
Unreviewed
CVE-2024-5193
was published
May 22, 2024
A vulnerability in lunary-ai/lunary version 1.2.2 allows attackers to bypass user creation limits...
Moderate
Unreviewed
CVE-2024-4153
was published
May 22, 2024
The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site...
High
Unreviewed
CVE-2024-4262
was published
May 22, 2024
The WPB Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-4896
was published
May 22, 2024
The Country State City Dropdown CF7 plugin for WordPress is vulnerable to SQL Injection via the ...
Critical
Unreviewed
CVE-2024-3495
was published
May 22, 2024
The Memberpress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ...
Moderate
Unreviewed
CVE-2024-5025
was published
May 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
usbnet: sanity check for...
Unknown
Unreviewed
CVE-2021-47495
was published
May 22, 2024
The Memberpress plugin for WordPress is vulnerable to Blind Server-Side Request Forgery in all...
High
Unreviewed
CVE-2024-5031
was published
May 22, 2024
ProTip!
Advisories are also available from the
GraphQL API