Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

591 advisories

Loading
A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0... Moderate Unreviewed
CVE-2025-0582 was published Jan 20, 2025
An issue in themesebrand Chatvia v.5.3.2 allows a remote attacker to execute arbitrary code via... Moderate Unreviewed
CVE-2024-40513 was published Jan 17, 2025
Matrix Media Repo (MMR) allows untrusted file formats can be thumbnailed, invoking potentially further untrusted decoders Moderate
CVE-2024-56515 was published for github.com/t2bot/matrix-media-repo (Go) Jan 16, 2025
The Admin and Customer Messages After Order for WooCommerce: OrderConvo plugin for WordPress is... Moderate Unreviewed
CVE-2024-13355 was published Jan 16, 2025
An arbitrary file upload vulnerability in the UI login page logo upload function of Process Maker... Moderate Unreviewed
CVE-2024-41454 was published Jan 16, 2025
SAP NetWeaver AS JAVA (User Admin Application) is vulnerable to stored cross site scripting... Moderate Unreviewed
CVE-2025-0057 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Moderate Unreviewed
CVE-2023-42248 was published Jan 14, 2025
A vulnerability, which was classified as critical, has been found in CampCodes Computer... Moderate Unreviewed
CVE-2025-0341 was published Jan 9, 2025
A vulnerability was found in code-projects Content Management System 1.0. It has been classified... Moderate Unreviewed
CVE-2025-0346 was published Jan 9, 2025
The <redacted>.exe or <redacted>.exe CGI binary can be used to upload arbitrary files to /tmp... Moderate Unreviewed
CVE-2024-43662 was published Jan 9, 2025
A vulnerability, which was classified as critical, has been found in ZeroWdd myblog 1.0. This... Moderate Unreviewed
CVE-2024-13191 was published Jan 9, 2025
A vulnerability was found in wangl1989 mysiteforme 1.0. It has been declared as critical. This... Moderate Unreviewed
CVE-2024-13138 was published Jan 5, 2025
A vulnerability was found in Campcodes Project Management System 1.0. It has been declared as... Moderate Unreviewed
CVE-2025-0213 was published Jan 4, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Beee ACF City Selector allows... Moderate Unreviewed
CVE-2024-56264 was published Jan 2, 2025
Some Honor products are affected by file writing vulnerability, successful exploitation could... Moderate Unreviewed
CVE-2024-47151 was published Dec 26, 2024
The DirectoryPress – Business Directory And Classified Ad Listing plugin for WordPress is... Moderate Unreviewed
CVE-2024-10584 was published Dec 24, 2024
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component... Moderate Unreviewed
CVE-2024-55514 was published Dec 17, 2024
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2024-12042 was published Dec 13, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.2,... Moderate Unreviewed
CVE-2024-44220 was published Dec 12, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in POSIMYTH WDesignkit allows... Moderate Unreviewed
CVE-2024-53811 was published Dec 6, 2024
A vulnerability was found in code-projects Online Notice Board up to 1.0 and classified as... Moderate Unreviewed
CVE-2024-12233 was published Dec 5, 2024
IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to malicious file upload by... Moderate Unreviewed
CVE-2024-25020 was published Dec 3, 2024
IBM Cognos Controller 11.0.0 and 11.0.1 could be vulnerable to malicious file upload by not... Moderate Unreviewed
CVE-2024-25019 was published Dec 3, 2024
A vulnerability classified as problematic was found in Guizhou Xiaoma Technology jpress 5.1.2.... Moderate Unreviewed
CVE-2024-11971 was published Nov 29, 2024
An authenticated arbitrary file upload vulnerability in the Documents module of SPIP v4.3.3... Moderate Unreviewed
CVE-2024-53619 was published Nov 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database