Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,319
Erlang
31
GitHub Actions
21
Go
2,077
Maven
5,000+
npm
3,747
NuGet
674
pip
3,435
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

94,691 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-28002 was published Mar 28, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-28001 was published Mar 28, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions... High Unreviewed
CVE-2023-6371 was published Mar 28, 2024
Missing authorization vulnerability in GetStmUrlPath webapi component in Synology Surveillance... High Unreviewed
CVE-2024-29228 was published Mar 28, 2024
Missing authorization vulnerability in GetLiveViewPath webapi component in Synology Surveillance... High Unreviewed
CVE-2024-29229 was published Mar 28, 2024
Deserialization of Untrusted Data vulnerability in MainWP MainWP Links Manager Extension.This... High Unreviewed
CVE-2023-23649 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2023-39309 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-25924 was published Mar 28, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-27999 was published Mar 28, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-25599 was published Mar 28, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-30200 was published Mar 28, 2024
Deserialization of Untrusted Data vulnerability in GiveWP.This issue affects GiveWP: from n/a... High Unreviewed
CVE-2024-30229 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-30240 was published Mar 28, 2024
Server-Side Request Forgery (SSRF) vulnerability in Brainstorm Force Starter Templates —... High Unreviewed
CVE-2023-34370 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-30241 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-30237 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-30243 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-30242 was published Mar 28, 2024
Deserialization of Untrusted Data vulnerability in Acowebs PDF Invoices and Packing Slips For... High Unreviewed
CVE-2024-30230 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-30239 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-30236 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-30245 was published Mar 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-30244 was published Mar 28, 2024
Server-Side Request Forgery (SSRF) vulnerability in Brainstorm Force Spectra.This issue affects... High Unreviewed
CVE-2023-36679 was published Mar 28, 2024
Server-Side Request Forgery (SSRF) vulnerability in ThemeFusion Avada.This issue affects Avada:... High Unreviewed
CVE-2023-39313 was published Mar 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database