GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,916
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
105,001 advisories
Filter by severity
Vba32 Antivirus v3.36.0 is vulnerable to an Arbitrary Memory Read vulnerability. The 0x22200B...
Moderate
Unreviewed
CVE-2024-23440
was published
Feb 13, 2024
An unauthenticated attacker can send a ping request from one network to another through an error...
Moderate
Unreviewed
CVE-2024-24782
was published
Feb 13, 2024
Vba32 Antivirus v3.36.0 is vulnerable to an Arbitrary Memory Read vulnerability by triggering the...
Moderate
Unreviewed
CVE-2024-23439
was published
Feb 13, 2024
Uncontrolled Resource Consumption vulnerability in Honeywell Niagara Framework on Windows, Linux,...
Moderate
Unreviewed
CVE-2024-1309
was published
Feb 13, 2024
The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-1157
was published
Feb 13, 2024
The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-1159
was published
Feb 13, 2024
A cross-site scripting vulnerability in Trellix Central Management (CM) prior to 9.1.3.97129...
Moderate
Unreviewed
CVE-2023-6072
was published
Feb 13, 2024
The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-1160
was published
Feb 13, 2024
A vulnerability has been identified in OpenPCS 7 V9.1 (All versions), SIMATIC BATCH V9.1 (All...
Moderate
Unreviewed
CVE-2023-48363
was published
Feb 13, 2024
A vulnerability has been identified in OpenPCS 7 V9.1 (All versions), SIMATIC BATCH V9.1 (All...
Moderate
Unreviewed
CVE-2023-48364
was published
Feb 13, 2024
Incorrect Privilege Assignment vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R...
Moderate
Unreviewed
CVE-2023-6815
was published
Feb 13, 2024
SAP Master Data Governance for Material Data - versions 618, 619, 620, 621, 622, 800, 801, 802,...
Moderate
Unreviewed
CVE-2024-24741
was published
Feb 13, 2024
The SAP Fiori app (My Overtime Request) - version 605, does not perform the necessary...
Moderate
Unreviewed
CVE-2024-25643
was published
Feb 13, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Photoboxone SMTP Mail.This issue affects SMTP...
Moderate
Unreviewed
CVE-2024-25914
was published
Feb 13, 2024
SAP Companion - version <3.1.38, has a URL with parameter that could be vulnerable to XSS attack....
Moderate
Unreviewed
CVE-2024-22129
was published
Feb 13, 2024
SAP CRM WebClient UI - version S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, WEBCUIF 701...
Moderate
Unreviewed
CVE-2024-24742
was published
Feb 13, 2024
SAP Bank Account Management (BAM) allows an authenticated user with restricted access to use...
Moderate
Unreviewed
CVE-2024-24739
was published
Feb 13, 2024
SAP NetWeaver Application Server (ABAP) - versions KERNEL 7.53, KERNEL 7.54, KERNEL 7.77, KERNEL...
Moderate
Unreviewed
CVE-2024-24740
was published
Feb 13, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-50358
was published
Feb 13, 2024
SAP NWBC for HTML - versions SAP_UI 754, SAP_UI 755, SAP_UI 756, SAP_UI 757, SAP_UI 758,...
Moderate
Unreviewed
CVE-2024-22128
was published
Feb 13, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-47218
was published
Feb 13, 2024
HCL Connections is vulnerable to a denial of service, caused by improper validation on certain...
Moderate
Unreviewed
CVE-2023-28018
was published
Feb 13, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2...
Moderate
Unreviewed
CVE-2024-1250
was published
Feb 12, 2024
IBM Robotic Process Automation 21.0.2 contains a vulnerability that could allow user ids may be...
Moderate
Unreviewed
CVE-2022-22506
was published
Feb 12, 2024
IBM CICS TX Standard and Advanced 11.1 uses weaker than expected cryptographic algorithms that...
Moderate
Unreviewed
CVE-2022-34309
was published
Feb 12, 2024
ProTip!
Advisories are also available from the
GraphQL API