Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,525 advisories

Loading
A vulnerability, which was classified as critical, was found in itsourcecode Society Management... Moderate Unreviewed
CVE-2024-7192 was published Jul 29, 2024
A vulnerability classified as critical has been found in itsourcecode Online Food Ordering System... Moderate Unreviewed
CVE-2024-7189 was published Jul 29, 2024
Cervantes through 0.5-alpha accepts insecure file uploads. Moderate Unreviewed
CVE-2024-42054 was published Jul 28, 2024
The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6431 was published Jul 27, 2024
An arbitrary file upload vulnerability in Webkul Qloapps v1.6.0.0 allows attackers to execute... High Unreviewed
CVE-2024-40318 was published Jul 25, 2024
The Social Auto Poster plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6756 was published Jul 24, 2024
The Redux Framework plugin for WordPress is vulnerable to unauthenticated JSON file uploads due... High Unreviewed
CVE-2024-6828 was published Jul 23, 2024
A vulnerability classified as critical was found in itsourcecode University Management System 1.0... Moderate Unreviewed
CVE-2024-6958 was published Jul 21, 2024
A vulnerability classified as critical has been found in Gargaj wuhu up to... Moderate Unreviewed
CVE-2024-6948 was published Jul 21, 2024
A vulnerability was found in Flute CMS 0.2.2.4-alpha. It has been classified as critical. This... Moderate Unreviewed
CVE-2024-6945 was published Jul 21, 2024
Automad arbitrary file upload vulnerability High
CVE-2024-40400 was published for automad/automad (Composer) Jul 19, 2024
marcantondahmen
The Brizy – Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-3242 was published Jul 18, 2024
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2024-20296 was published Jul 17, 2024
Zohocorp ManageEngine DDI Central versions 4001 and prior were vulnerable to directory traversal... Moderate Unreviewed
CVE-2024-27311 was published Jul 17, 2024
Apache StreamPipes has potential remote code execution (RCE) via file upload High
CVE-2024-31411 was published for org.apache.streampipes:streampipes-parent (Maven) Jul 17, 2024
The 简数采集器 (Keydatas) plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed
CVE-2024-6220 was published Jul 17, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.8 prior to 16.11... Low Unreviewed
CVE-2024-6595 was published Jul 17, 2024
A vulnerability, which was classified as critical, has been found in SourceCodester Online... Moderate Unreviewed
CVE-2024-6801 was published Jul 17, 2024
Simple Library Management System Project Using PHP/MySQL v1.0 was discovered to contain an... Critical Unreviewed
CVE-2024-40394 was published Jul 16, 2024
File Upload vulnerability in Nanjin Xingyuantu Technology Co Sparkshop (Spark Mall B2C Mall v.1.1... Critical Unreviewed
CVE-2024-40425 was published Jul 16, 2024
Tmall_demo v2024.07.03 was discovered to contain an arbitrary file upload via the component... Moderate Unreviewed
CVE-2024-40553 was published Jul 15, 2024
The Insert or Embed Articulate Content into WordPress plugin before 4.3000000024 does not prevent... High Unreviewed
CVE-2024-5630 was published Jul 15, 2024
A vulnerability was found in Nanjing Xingyuantu Technology SparkShop up to 1.1.6. It has been... Moderate Unreviewed
CVE-2024-6730 was published Jul 14, 2024
An arbitrary file upload vulnerability in the component /admin/cmsTemplate/savePlace of PublicCMS... High Unreviewed
CVE-2024-40549 was published Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsTemplate/doUpload of PublicCMS... High Unreviewed
CVE-2024-40551 was published Jul 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database