GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
238,929 advisories
Filter by severity
A Server-Side Request Forgery (SSRF) in smarts-srl.com Smart Agent v.1.1.0 allows a remote...
High
Unreviewed
CVE-2024-50714
was published
Dec 28, 2024
Dcat Admin v2.2.0-beta contains a cross-site scripting (XSS) vulnerability in /admin/articles...
Moderate
Unreviewed
CVE-2024-54774
was published
Dec 28, 2024
Dcat-Admin v2.2.0-beta and v2.2.2-beta contains a Cross-Site Scripting (XSS) vulnerability via ...
Moderate
Unreviewed
CVE-2024-54775
was published
Dec 28, 2024
SmartAgent v1.1.0 was discovered to contain a SQL injection vulnerability via the id parameter at...
Unknown
Unreviewed
CVE-2024-50713
was published
Dec 27, 2024
SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary...
Critical
Unreviewed
CVE-2024-50717
was published
Dec 27, 2024
SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary...
Critical
Unreviewed
CVE-2024-50716
was published
Dec 27, 2024
An issue in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive...
High
Unreviewed
CVE-2024-50715
was published
Dec 27, 2024
A vulnerability was found in Beijing Longda Jushang Technology DBShop商城系统 3.3 Release 231225. It...
Moderate
Unreviewed
CVE-2024-12991
was published
Dec 27, 2024
Integer overflow vulnerability exists in SimplCommerce at commit...
Critical
Unreviewed
CVE-2024-50944
was published
Dec 27, 2024
An improper access control vulnerability exists in SimplCommerce at commit...
High
Unreviewed
CVE-2024-50945
was published
Dec 27, 2024
Incorrect access control in the /users endpoint of Cpacker MemGPT v0.3.17 allows attackers to...
Unknown
Unreviewed
CVE-2024-39025
was published
Dec 27, 2024
A race condition vulnerability in SimplCommerce at commit...
Moderate
Unreviewed
CVE-2024-53476
was published
Dec 27, 2024
An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18,...
Unknown
Unreviewed
CVE-2024-54453
was published
Dec 27, 2024
An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18,...
Unknown
Unreviewed
CVE-2024-54454
was published
Dec 27, 2024
An issue was discovered in Kurmi Provisioning Suite 7.9.0.33. If an X-Forwarded-For header is...
Critical
Unreviewed
CVE-2024-54450
was published
Dec 27, 2024
A cross-site scripting (XSS) vulnerability in the graphicCustomization.do page in Kurmi...
Moderate
Unreviewed
CVE-2024-54451
was published
Dec 27, 2024
An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35 and 7.10.x through 7.10.0.18....
Moderate
Unreviewed
CVE-2024-54452
was published
Dec 27, 2024
The Four-Faith router models F3x24 and F3x36 are affected by an operating system (OS) command...
High
Unreviewed
CVE-2024-12856
was published
Dec 27, 2024
A vulnerability, which was classified as critical, has been found in DrayTek Vigor2960 and...
Moderate
Unreviewed
CVE-2024-12986
was published
Dec 27, 2024
A vulnerability, which was classified as critical, was found in DrayTek Vigor2960 and Vigor300B 1...
Moderate
Unreviewed
CVE-2024-12987
was published
Dec 27, 2024
A vulnerability was found in WISI Tangram GT31 up to 20241214 and classified as problematic....
Moderate
Unreviewed
CVE-2024-12989
was published
Dec 27, 2024
A vulnerability was found in ruifang-tech Rebuild 3.8.6. It has been classified as problematic....
Moderate
Unreviewed
CVE-2024-12990
was published
Dec 27, 2024
A vulnerability has been found in Netgear R6900P and R7000P 1.3.3.154 and classified as critical....
Moderate
Unreviewed
CVE-2024-12988
was published
Dec 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
bnxt_en: Fix aggregation ID...
Unknown
Unreviewed
CVE-2024-56656
was published
Dec 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
ALSA: control: Avoid WARN()...
Unknown
Unreviewed
CVE-2024-56657
was published
Dec 27, 2024
ProTip!
Advisories are also available from the
GraphQL API