Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

146 advisories

Loading
A vulnerability was found in ZhongBangKeJi CRMEB up to 5.4.0 and classified as critical. Affected... Moderate Unreviewed
CVE-2024-6944 was published Jul 21, 2024
A vulnerability has been found in ZhongBangKeJi CRMEB up to 5.4.0 and classified as critical.... Moderate Unreviewed
CVE-2024-6943 was published Jul 21, 2024
Gadget chain in Symfony 1 due to uncontrolled unserialized input in sfNamespacedParameterHolder Moderate
CVE-2024-28861 was published for friendsofsymfony1/symfony1 (Composer) Mar 22, 2024
darkpills
Deserialization of Untrusted Data vulnerability in WP MEDIA SAS Search & Replace.This issue... Moderate Unreviewed
CVE-2024-38759 was published Jul 22, 2024
Deserialization of Untrusted Data vulnerability in wpweb WooCommerce Social Login.This issue... Moderate Unreviewed
CVE-2024-37502 was published Jul 9, 2024
By-passing Protection of PharStreamWrapper Interceptor Moderate
GHSA-4v5g-8pq2-32m2 was published for typo3/phar-stream-wrapper (Composer) Jun 5, 2024
Deserialization of Untrusted Data vulnerability in WebToffee Order Export & Order Import for... Moderate Unreviewed
CVE-2024-34751 was published May 16, 2024
Deserialization of Untrusted Data in Spring AMQP Moderate
CVE-2021-22095 was published for org.springframework.amqp:spring-amqp (Maven) Dec 1, 2021
SunBK201
Deserialization of Untrusted Data vulnerability in BdThemes Ultimate Store Kit Elementor Addons... Moderate Unreviewed
CVE-2024-4606 was published May 14, 2024
Deserialization of Untrusted Data vulnerability in OCDI One Click Demo Import.This issue affects... Moderate Unreviewed
CVE-2024-34433 was published May 14, 2024
The IBM SDK, Java Technology Edition's Object Request Broker (ORB) 7.1.0.0 through 7.1.5.21 and 8... Moderate Unreviewed
CVE-2023-38264 was published May 14, 2024
kurwov vulnerable to Denial of Service due to improper data sanitization Moderate
CVE-2024-34075 was published for kurwov (npm) May 3, 2024
SuperchupuDev
Drools Core Deserialization of Untrusted Data vulnerability Moderate
CVE-2022-1415 was published for org.drools:drools-core (Maven) Sep 11, 2023
Deserialization of Untrusted Data vulnerability in Team Yoast Custom field finder.This issue... Moderate Unreviewed
CVE-2024-33641 was published Apr 29, 2024
A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue... Moderate Unreviewed
CVE-2023-32665 was published Sep 14, 2023
Subrion CMS PHP Object Injection Moderate
CVE-2020-12469 was published for intelliants/subrion (Composer) May 24, 2022
Deserialization of Untrusted Data vulnerability in Import and export users and customers.This... Moderate Unreviewed
CVE-2024-32817 was published Apr 24, 2024
Deserialization of Untrusted Data vulnerability in WebToffee Import Export WordPress Users.This... Moderate Unreviewed
CVE-2024-32835 was published Apr 24, 2024
A vulnerability classified as critical has been found in Byzoro Smart S80 Management Platform up... Moderate Unreviewed
CVE-2024-4019 was published Apr 20, 2024
Gadget chain in Symfony 1 due to vulnerable Swift Mailer dependency Moderate
CVE-2024-28859 was published for friendsofsymfony1/swiftmailer (Composer) Mar 18, 2024
darkpills
Deserialization of Untrusted Data vulnerability in WP All Import Import Users from CSV.This issue... Moderate Unreviewed
CVE-2024-32431 was published Apr 15, 2024
A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI up to 3.9... Moderate Unreviewed
CVE-2024-3740 was published Apr 13, 2024
Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive:... Moderate Unreviewed
CVE-2024-27985 was published Apr 11, 2024
A vulnerability was found in EyouCMS 1.6.5. It has been declared as critical. This vulnerability... Moderate Unreviewed
CVE-2024-3431 was published Apr 8, 2024
Deserialization of Untrusted Data vulnerability in VJInfotech WP Import Export Lite.This issue... Moderate Unreviewed
CVE-2024-31308 was published Apr 7, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database