GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,161 advisories
Filter by severity
IBM i 7.3, 7.4, and 7.5
is vulnerable to server-side request forgery (SSRF). This may allow an...
Moderate
Unreviewed
CVE-2024-51463
was published
Dec 21, 2024
Server-Side Request Forgery in URL Mapper in Arctic Security's Arctic Hub versions 3.0.1764-5.6...
High
Unreviewed
CVE-2024-12867
was published
Dec 20, 2024
A server-side request forgery exists in Satellite. When a PUT HTTP request is made to ...
Moderate
Unreviewed
CVE-2024-12840
was published
Dec 20, 2024
IBM Security Guardium 11.5 is vulnerable to server-side request forgery (SSRF). This may allow an...
Moderate
Unreviewed
CVE-2024-49336
was published
Dec 19, 2024
QOS.CH logback-core Server-Side Request Forgery vulnerability
Low
CVE-2024-12801
was published
for
ch.qos.logback:logback-core
(Maven)
Dec 19, 2024
The Broken Link Checker | Finder plugin for WordPress is vulnerable to Blind Server-Side Request...
Moderate
Unreviewed
CVE-2024-12121
was published
Dec 19, 2024
In the GetSimple CMS CE 3.3.19 management page, Server-Side Request Forgery (SSRF) can be...
High
Unreviewed
CVE-2024-55086
was published
Dec 18, 2024
The WP All Import Pro plugin for WordPress is vulnerable to Server-Side Request Forgery in all...
High
Unreviewed
CVE-2024-9624
was published
Dec 17, 2024
Server-Side Request Forgery (SSRF) vulnerability in SoftLab Radio Player allows Server Side...
High
Unreviewed
CVE-2024-54385
was published
Dec 16, 2024
Server-Side Request Forgery (SSRF) vulnerability in Hep Hep Hurra (HHH) Hurrakify allows Server...
High
Unreviewed
CVE-2024-54330
was published
Dec 13, 2024
Server-Side Request Forgery (SSRF) vulnerability in PlexTrac allowing requests to internal system...
High
Unreviewed
CVE-2024-11836
was published
Dec 13, 2024
http4k has a potential XXE (XML External Entity Injection) vulnerability
Critical
CVE-2024-55875
was published
for
org.http4k:http4k-format-xml
(Maven)
Dec 12, 2024
Adobe Document Service allows an attacker with administrator privileges to send a crafted request...
Critical
Unreviewed
CVE-2024-47578
was published
Dec 10, 2024
SAP NetWeaver Administrator(System Overview) allows an authenticated attacker to enumerate...
High
Unreviewed
CVE-2024-54197
was published
Dec 10, 2024
Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could give attackers the ability...
Critical
Unreviewed
CVE-2024-48874
was published
Dec 6, 2024
Oxide control plane software before 5 allows SSRF.
Critical
Unreviewed
CVE-2023-50913
was published
Dec 5, 2024
Server-Side Request Forgery vulnerabilities were found providing a potential for access to...
High
Unreviewed
CVE-2024-6784
was published
Dec 5, 2024
Backstage Scaffolder plugin vulnerable to Server-Side Request Forgery
Moderate
CVE-2024-53983
was published
for
@backstage/plugin-scaffolder-node
(npm)
Dec 2, 2024
Server-Side Request Forgery (SSRF) vulnerability in Gabe Livan Asset CleanUp: Page Speed Booster...
Moderate
Unreviewed
CVE-2024-53738
was published
Nov 30, 2024
LinkStack 2.7.9 through 4.7.7 allows resources\views\components\favicon.blade.php link SSRF.
Moderate
Unreviewed
CVE-2024-35451
was published
Nov 29, 2024
@lobehub/chat Server Side Request Forgery vulnerability
High
CVE-2024-32965
was published
for
@lobehub/chat
(npm)
Nov 26, 2024
OpenShift Console Server Side Request Forgery vulnerability
Moderate
CVE-2024-6538
was published
for
github.com/openshift/console
(Go)
Nov 25, 2024
PostHog database_schema Server-Side Request Forgery Information Disclosure Vulnerability. This...
High
Unreviewed
CVE-2024-9710
was published
Nov 22, 2024
A vulnerability classified as critical was found in IPC Unigy Management System 04.03.00.08.0027....
Moderate
Unreviewed
CVE-2024-11618
was published
Nov 22, 2024
A server-side request forgery (SSRF) vulnerability has been reported to affect Notes Station 3....
Critical
Unreviewed
CVE-2024-38645
was published
Nov 22, 2024
ProTip!
Advisories are also available from the
GraphQL API