Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,757
Erlang
35
GitHub Actions
29
Go
2,327
Maven
5,000+
npm
3,960
NuGet
712
pip
3,741
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

131,744 advisories

Loading
The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3,... Moderate Unreviewed
CVE-2024-12606 was published Jan 10, 2025
The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3,... Moderate Unreviewed
CVE-2024-12473 was published Jan 10, 2025
A stored cross-site scripting (XSS) vulnerability in the built-in messenger of REDCap 14.9.6... Moderate Unreviewed
CVE-2024-56376 was published Jan 10, 2025
A stored cross-site scripting (XSS) vulnerability in survey titles of REDCap 14.9.6 allows... Moderate Unreviewed
CVE-2024-56377 was published Jan 10, 2025
Cross Site Scripting vulnerability in LinZhaoguan pb-cms v.2.0 allows a remote attacker to... Moderate Unreviewed
CVE-2024-51229 was published Jan 10, 2025
Vulnerability in Drupal Megamenu Framework.This issue affects Megamenu Framework: *.*. Moderate Unreviewed
CVE-2024-13299 was published Jan 9, 2025
Vulnerability in Drupal Print Anything.This issue affects Print Anything: *.*. Moderate Unreviewed
CVE-2024-13300 was published Jan 9, 2025
Vulnerability in Drupal Git Utilities for Drupal.This issue affects Git Utilities for Drupal: *.*. Moderate Unreviewed
CVE-2024-13310 was published Jan 9, 2025
Buffer Overflow vulnerability in Neat Board NFC v.1.20240620.0015 allows a physically proximate... Moderate Unreviewed
CVE-2024-48806 was published Jan 9, 2025
Improper Authentication vulnerability in Drupal Login Disable allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2024-13309 was published Jan 9, 2025
Deserialization of Untrusted Data vulnerability in Drupal Eloqua allows Object Injection.This... Moderate Unreviewed
CVE-2024-13297 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Pages Restriction Access allows Forceful Browsing... Moderate Unreviewed
CVE-2024-13302 was published Jan 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-13294 was published Jan 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-13298 was published Jan 9, 2025
Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue... Moderate Unreviewed
CVE-2024-13312 was published Jan 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-13305 was published Jan 9, 2025
Missing Authorization vulnerability in Drupal Download All Files allows Forceful Browsing.This... Moderate Unreviewed
CVE-2024-13303 was published Jan 9, 2025
Deserialization of Untrusted Data vulnerability in Drupal Node export allows Object Injection... Moderate Unreviewed
CVE-2024-13295 was published Jan 9, 2025
Deserialization of Untrusted Data vulnerability in Drupal Mailjet allows Object Injection.This... Moderate Unreviewed
CVE-2024-13296 was published Jan 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-13301 was published Jan 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Drupal Minify JS allows Cross Site Request... Moderate Unreviewed
CVE-2024-13304 was published Jan 9, 2025
Insufficient Granularity of Access Control vulnerability in Drupal Paragraphs table allows... Moderate Unreviewed
CVE-2024-13272 was published Jan 9, 2025
Drupal Open Social allows Functionality Misuse Moderate
CVE-2024-13274 was published for goalgorilla/open_social (Composer) Jan 9, 2025
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Drupal Security... Moderate Unreviewed
CVE-2024-13275 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal OhDear Integration allows Forceful Browsing.This... Moderate Unreviewed
CVE-2024-13290 was published Jan 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database