Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

440 advisories

Loading
The Photo Video Gallery Master plugin for WordPress is vulnerable to PHP Object Injection in all... High Unreviewed
CVE-2024-5724 was published Jun 19, 2024
There is a vulnerability in AVEVA PI Asset Framework Client that could allow malicious code to... High Unreviewed
CVE-2024-3467 was published Jun 12, 2024
Dell Common Event Enabler, version 8.9.10.0 and prior, contain an insecure deserialization... High Unreviewed
CVE-2024-28964 was published Jun 12, 2024
Microsoft Dynamics 365 Business Central Remote Code Execution Vulnerability High Unreviewed
CVE-2024-35249 was published Jun 11, 2024
Justice AV Solutions Viewer Setup 8.3.7.250-1 contains a malicious binary when executed and is... High Unreviewed
CVE-2024-4978 was published May 23, 2024
IBM i 7.2, 7.3, and 7.4 could allow a remote attacker to execute arbitrary code leading to a... High Unreviewed
CVE-2024-31879 was published May 18, 2024
In Progress® Telerik® Reporting versions prior to 2024 Q2 (18.1.24.2.514), a code execution... High Unreviewed
CVE-2024-4200 was published May 15, 2024
Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can... High Unreviewed
CVE-2024-3967 was published May 15, 2024
Microsoft Excel Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30042 was published May 14, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30044 was published May 14, 2024
A deserialization of untrusted data vulnerability exists in common code used by FlexLogger and... High Unreviewed
CVE-2024-4044 was published May 14, 2024
Inductive Automation Ignition Base64Element Deserialization of Untrusted Data Remote Code... High Unreviewed
CVE-2023-50220 was published May 3, 2024
Inductive Automation Ignition ResponseParser SerializedResponse Deserialization of Untrusted Data... High Unreviewed
CVE-2023-50221 was published May 3, 2024
Inductive Automation Ignition ModuleInvoke Deserialization of Untrusted Data Remote Code... High Unreviewed
CVE-2023-50218 was published May 3, 2024
Inductive Automation Ignition ExtendedDocumentCodec Deserialization of Untrusted Data Remote Code... High Unreviewed
CVE-2023-50223 was published May 3, 2024
Inductive Automation Ignition RunQuery Deserialization of Untrusted Data Remote Code Execution... High Unreviewed
CVE-2023-50219 was published May 3, 2024
Inductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data... High Unreviewed
CVE-2023-50222 was published May 3, 2024
Inductive Automation Ignition AbstractGatewayFunction Deserialization of Untrusted Data Remote... High Unreviewed
CVE-2023-39473 was published May 3, 2024
Deserialization of untrusted data can occur in the R statistical programming language, on any... High Unreviewed
CVE-2024-27322 was published Apr 29, 2024
Deserialization of Untrusted Data vulnerability in Averta Master Slider.This issue affects Master... High Unreviewed
CVE-2024-32600 was published Apr 18, 2024
Deserialization of Untrusted Data vulnerability in ThemeKraft WooBuddy.This issue affects... High Unreviewed
CVE-2024-32603 was published Apr 18, 2024
Deserialization of Untrusted Data vulnerability in PickPlugins Product Designer.This issue... High Unreviewed
CVE-2024-31277 was published Apr 7, 2024
Deserialization of Untrusted Data vulnerability in MainWP MainWP Links Manager Extension.This... High Unreviewed
CVE-2023-23649 was published Mar 28, 2024
Deserialization of Untrusted Data vulnerability in Acowebs PDF Invoices and Packing Slips For... High Unreviewed
CVE-2024-30230 was published Mar 28, 2024
Deserialization of Untrusted Data vulnerability in GiveWP.This issue affects GiveWP: from n/a... High Unreviewed
CVE-2024-30229 was published Mar 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database