Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

146 advisories

Loading
A vulnerability was found in spider-flow up to 0.5.0. It has been declared as critical. Affected... Moderate Unreviewed
CVE-2023-5016 was published Sep 17, 2023
Apache Superset Deserialization of Untrusted Data vulnerability Moderate
CVE-2023-37941 was published for apache-superset (pip) Sep 6, 2023
Denial of Service in Google Guava Moderate
CVE-2018-10237 was published for com.google.guava:guava (Maven) Jun 15, 2020
Apache Johnzon Deserialization of Untrusted Data vulnerability Moderate
CVE-2023-33008 was published for org.apache.johnzon:johnzon-mapper (Maven) Jul 7, 2023
A vulnerability was found in Zhong Bang CRMEB up to 4.6.0. It has been declared as problematic.... Moderate Unreviewed
CVE-2023-3234 was published Jun 14, 2023
A vulnerability was found in Zhong Bang CRMEB up to 4.6.0 and classified as critical. This issue... Moderate Unreviewed
CVE-2023-3232 was published Jun 14, 2023
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in DeepFaceLab pretrained DF.wf.288res... Moderate Unreviewed
CVE-2023-6656 was published Dec 10, 2023
Elasticsearch-hadoop Unsafe Deserialization Moderate
CVE-2023-46674 was published for org.elasticsearch:elasticsearch-hadoop (Maven) Dec 5, 2023
Deserialization of Untrusted Data vulnerability in E2Pdf.Com E2Pdf – Export To Pdf Tool for... Moderate Unreviewed
CVE-2023-46154 was published Dec 19, 2023
Deserialization of Untrusted Data vulnerability in weDevs Dokan – Best WooCommerce Multivendor... Moderate Unreviewed
CVE-2023-34382 was published Dec 19, 2023
Deserialization of Untrusted Data vulnerability in File Manager by Bit Form Team File Manager –... Moderate Unreviewed
CVE-2022-47599 was published Dec 20, 2023
Deserialization of Untrusted Data in Jenkins Moderate
CVE-2018-1999042 was published for org.jenkins-ci.main:jenkins-core (Maven) May 14, 2022
DoS vulnerability in bundled XStream library in Jenkins Core Moderate
CVE-2022-0538 was published for org.jenkins-ci.main:jenkins-core (Maven) Feb 10, 2022
NotMyFault
Deserialization of Untrusted Data vulnerability in Gesundheit Bewegt GmbH Zippy.This issue... Moderate Unreviewed
CVE-2023-36381 was published Dec 28, 2023
A vulnerability, which was classified as critical, has been found in fhs-opensource iparking 1.5... Moderate Unreviewed
CVE-2024-0302 was published Jan 8, 2024
PHPEMS Deserialization of Untrusted Data vulnerability Moderate
CVE-2023-6654 was published for phpems/phpems (Composer) Dec 10, 2023
A vulnerability, which was classified as problematic, was found in DeepFaceLab pretrained DF.wf... Moderate Unreviewed
CVE-2024-0654 was published Jan 18, 2024
Deserialization of Untrusted Data vulnerability in ProfilePress Membership Team Paid Membership... Moderate Unreviewed
CVE-2022-45083 was published Jan 19, 2024
Deserialization of Untrusted Data vulnerability in Nextend Smart Slider 3.This issue affects... Moderate Unreviewed
CVE-2022-45845 was published Jan 19, 2024
Silverstripe CMS Arbitrary Code Execution Moderate
CVE-2011-4962 was published for silverstripe/cms (Composer) May 17, 2022
fw_dbus.py in system-config-firewall 1.2.29 and earlier uses the pickle Python module unsafely... Moderate Unreviewed
CVE-2011-2520 was published May 17, 2022
view_help.php in the backend help system in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4... Moderate Unreviewed
CVE-2012-3527 was published May 17, 2022
A vulnerability was found in StanfordVL GibsonEnv 0.3.1. It has been classified as critical.... Moderate Unreviewed
CVE-2024-0959 was published Jan 27, 2024
ai-flow Deserialization of Untrusted Data vulnerability Moderate
CVE-2024-0960 was published for ai-flow (pip) Jan 27, 2024
A vulnerability, which was classified as critical, was found in openBI up to 6.0.3. Affected is... Moderate Unreviewed
CVE-2024-1198 was published Feb 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database