GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,960
Composer 4,279
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,421
Pub 12
RubyGems 891
Rust 873
Swift 36

Unreviewed advisories

All unreviewed 238,868

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

294 advisories

Filter by severity

Sort by

Least recently updated

A server side request forgery vulnerability allows a low-privileged user to perform local... High Unreviewed

CVE-2024-40718 was published Sep 7, 2024

Server-Side Request Forgery (SSRF), Improper Control of Generation of Code ('Code Injection')... High Unreviewed

CVE-2024-45507 was published Sep 4, 2024

The Skitter Slideshow plugin for WordPress is vulnerable to Server-Side Request Forgery in all... High Unreviewed

CVE-2022-1751 was published Aug 17, 2024

The Modern Events Calendar plugin for WordPress is vulnerable to Server-Side Request Forgery in... High Unreviewed

CVE-2024-6522 was published Aug 7, 2024

An authenticated attacker can bypass Server-Side Request Forgery (SSRF) protection in Microsoft... High Unreviewed

CVE-2024-38206 was published Aug 7, 2024

** UNSUPPORTED WHEN ASSIGNED ** Server-Side Request Forgery (SSRF) vulnerability in Apache IoTDB... High Unreviewed

CVE-2024-36448 was published Aug 5, 2024

A Server-Side Request Forgery (SSRF) in the Plugins Page of WonderCMS v3.4.3 allows attackers to... High Unreviewed

CVE-2024-41305 was published Jul 30, 2024

Server-Side Request Forgery (SSRF) vulnerability in Berqier Ltd BerqWP.This issue affects BerqWP:... High Unreviewed

CVE-2024-37942 was published Jul 22, 2024

Server-Side Request Forgery (SSRF) vulnerability in Seraphinite Solutions Seraphinite Post .DOCX... High Unreviewed

CVE-2024-38728 was published Jul 22, 2024

PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery (SSRF) via the... High Unreviewed

CVE-2024-40543 was published Jul 12, 2024

PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery (SSRF) via the... High Unreviewed

CVE-2024-40544 was published Jul 12, 2024

Microsoft SharePoint Server Information Disclosure Vulnerability High Unreviewed

CVE-2024-32987 was published Jul 9, 2024

Server-Side Request Forgery (SSRF) vulnerability in Theme-Ruby Foxiz.This issue affects Foxiz:... High Unreviewed

CVE-2024-37260 was published Jul 6, 2024

Server Side Request Forgery (SSRF) vulnerability in AdmirorFrames Joomla! extension in afGdStream... High Unreviewed

CVE-2024-5736 was published Jul 3, 2024

SSRF in Apache HTTP Server on Windows allows to potentially leak NTML hashes to a malicious... High Unreviewed

CVE-2024-38472 was published Jul 1, 2024

stangirard/quivr version 0.0.236 contains a Server-Side Request Forgery (SSRF) vulnerability. The... High Unreviewed

CVE-2024-5885 was published Jun 27, 2024

A Server-Side Request Forgery (SSRF) vulnerability exists in the upload processing interface of... High Unreviewed

CVE-2024-5822 was published Jun 27, 2024

The W3C XML Signature Syntax and Processing (XMLDsig) specification, starting with 1.0, was... High Unreviewed

CVE-2024-34581 was published Jun 26, 2024

In WhatsUp Gold versions released before 2023.1.3, an authenticated SSRF vulnerability in Wug.UI... High Unreviewed

CVE-2024-5015 was published Jun 25, 2024

In WhatsUp Gold versions released before 2023.1.3, a Server Side Request Forgery vulnerability... High Unreviewed

CVE-2024-5014 was published Jun 25, 2024

A Server-Side Request Forgery vulnerability was identified in GitHub Enterprise Server that... High Unreviewed

CVE-2024-5746 was published Jun 21, 2024

A Server-Side Request Forgery (SSRF) vulnerability exists in the lunary-ai/lunary application,... High Unreviewed

CVE-2024-5328 was published Jun 6, 2024

A Server-Side Request Forgery (SSRF) vulnerability exists in the file upload section of imartinez... High Unreviewed

CVE-2024-5186 was published Jun 6, 2024

A Server-Side Request Forgery (SSRF) vulnerability exists in the stangirard/quivr application,... High Unreviewed

CVE-2024-4851 was published Jun 6, 2024

A Server-Side Request Forgery (SSRF) vulnerability exists in the 'add_webpage' endpoint of the... High Unreviewed

CVE-2024-5482 was published Jun 6, 2024

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

294 advisories