Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,338
Maven
5,000+
npm
3,973
NuGet
715
pip
3,769
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+

108,577 advisories

Loading
In Splunk Enterprise versions below 9.3.1, and 9.2.0 versions below 9.2.3, and Splunk Cloud... High Unreviewed
CVE-2024-45732 was published Oct 14, 2024
Wavelog 1.8.5 allows Gridmap_model.php get_band_confirmed SQL injection via band, sat,... High Unreviewed
CVE-2024-48249 was published Oct 14, 2024
Wavelog 1.8.5 allows Oqrs_model.php get_worked_modes station_id SQL injectioin. High Unreviewed
CVE-2024-48257 was published Oct 14, 2024
Cloudlog 2.6.15 allows Oqrs.php request_form SQL injection via station_id or callsign. High Unreviewed
CVE-2024-48259 was published Oct 14, 2024
Cloudlog 2.6.15 allows Oqrs.php delete_oqrs_line id SQL injection. High Unreviewed
CVE-2024-48253 was published Oct 14, 2024
VULNERABILITY DETAILS Rockwell Automation used the latest versions of the CVSS scoring system to... High Unreviewed
CVE-2024-7847 was published Oct 14, 2024
The affected product lacks an authentication check when sending commands to the server via the... High Unreviewed
CVE-2024-9137 was published Oct 14, 2024
The affected product permits OS command injection through improperly restricted commands,... High Unreviewed
CVE-2024-9139 was published Oct 14, 2024
Software installed and run as a non-privileged user may conduct GPU system calls to read and... High Unreviewed
CVE-2024-43701 was published Oct 14, 2024
The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing... High Unreviewed
CVE-2024-9922 was published Oct 14, 2024
A vulnerability classified as critical was found in D-Link DIR-619L B1 2.06. Affected by this... High Unreviewed
CVE-2024-9915 was published Oct 13, 2024
CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that exposes test... High Unreviewed
CVE-2024-8070 was published Oct 13, 2024
A vulnerability classified as critical has been found in D-Link DIR-619L B1 2.06. Affected is the... High Unreviewed
CVE-2024-9914 was published Oct 13, 2024
A vulnerability was found in D-Link DIR-619L B1 2.06. It has been rated as critical. This issue... High Unreviewed
CVE-2024-9913 was published Oct 13, 2024
A vulnerability was found in D-Link DIR-619L B1 2.06. It has been classified as critical. This... High Unreviewed
CVE-2024-9911 was published Oct 13, 2024
A vulnerability was found in D-Link DIR-619L B1 2.06. It has been declared as critical. This... High Unreviewed
CVE-2024-9912 was published Oct 13, 2024
A vulnerability was found in D-Link DIR-619L B1 2.06 and classified as critical. Affected by this... High Unreviewed
CVE-2024-9910 was published Oct 13, 2024
A vulnerability has been found in D-Link DIR-619L B1 2.06 and classified as critical. Affected by... High Unreviewed
CVE-2024-9909 was published Oct 13, 2024
A vulnerability in parisneo/lollms-webui version 9.8 allows for a Denial of Service (DOS) attack... High Unreviewed
CVE-2024-6959 was published Oct 13, 2024
Zendesk before 2024-07-02 allows remote attackers to read ticket history via e-mail spoofing,... High Unreviewed
CVE-2024-49193 was published Oct 12, 2024
The WP Post Author – Boost Your Blog's Engagement with Author Box, Social Links, Co-Authors,... High Unreviewed
CVE-2024-8757 was published Oct 12, 2024
The Bot for Telegram on WooCommerce plugin for WordPress is vulnerable to sensitive information... High Unreviewed
CVE-2024-9821 was published Oct 12, 2024
An issue was discovered in the centreon-bi-server component in Centreon BI Server 24.04.x before... High Unreviewed
CVE-2024-45754 was published Oct 12, 2024
Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an... High Unreviewed
CVE-2024-35522 was published Oct 12, 2024
Netgear XR1000 v1.0.0.64 is vulnerable to command injection in usb_remote_smb_conf.cgi via the... High Unreviewed
CVE-2024-35517 was published Oct 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database