Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

101,567 advisories

Loading
quarkus-core leaks local environment variables from Quarkus namespace during application's build High
CVE-2024-2700 was published for io.quarkus:quarkus-core (Maven) Apr 4, 2024
bschuhmann
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31082 was published Apr 4, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31080 was published Apr 4, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31081 was published Apr 4, 2024
dectalk-tts Uses Unencrypted HTTP Request High
CVE-2024-31206 was published for dectalk-tts (npm) Apr 4, 2024
AverageHelper JstnMcBrd
In the Linux kernel, the following vulnerability has been resolved: gtp: fix use-after-free and... High Unreviewed
CVE-2024-26793 was published Apr 4, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Prevent... High Unreviewed
CVE-2024-26797 was published Apr 4, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free of... High Unreviewed
CVE-2024-26792 was published Apr 4, 2024
In the Linux kernel, the following vulnerability has been resolved: tls: fix use-after-free on... High Unreviewed
CVE-2024-26800 was published Apr 4, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: dev-replace: properly... High Unreviewed
CVE-2024-26791 was published Apr 4, 2024
In the Linux kernel, the following vulnerability has been resolved: crypto: arm64/neonbs - fix... High Unreviewed
CVE-2024-26789 was published Apr 4, 2024
Cross Site Scripting (XSS) vulnerability in ZoneMinder before version 1.34.21, allows remote... High Unreviewed
CVE-2020-25730 was published Apr 4, 2024
Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all order... High Unreviewed
CVE-2023-36644 was published Apr 4, 2024
An issue was discovered in SeaCMS version 12.9, allows remote attackers to execute arbitrary code... High Unreviewed
CVE-2024-30565 was published Apr 4, 2024
Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all orders... High Unreviewed
CVE-2023-36643 was published Apr 4, 2024
The CloudStack management server and secondary storage VM could be tricked into making requests... High Unreviewed
CVE-2024-29007 was published Apr 4, 2024
SQL Injection vulnerability in ECshop 4.x allows an attacker to obtain sensitive information via... High Unreviewed
CVE-2024-31025 was published Apr 4, 2024
The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient... High Unreviewed
CVE-2024-3022 was published Apr 4, 2024
The Modal Popup Box – Popup Builder, Show Offers And News in Popup plugin for WordPress is... High Unreviewed
CVE-2024-2008 was published Apr 4, 2024
A vulnerability, which was classified as critical, was found in D-Link DNS-320L, DNS-325, DNS... High Unreviewed
CVE-2024-3273 was published Apr 4, 2024
OS command injection vulnerability in WRC-X3200GST3-B v1.25 and earlier, and WRC-G01-W v1.24 and... High Unreviewed
CVE-2024-26258 was published Apr 4, 2024
OS command injection vulnerability in WRC-X3200GST3-B v1.25 and earlier, and WRC-G01-W v1.24 and... High Unreviewed
CVE-2024-25568 was published Apr 4, 2024
SVR-116 firmware version 1.6.0.30028871 allows a remote authenticated attacker with an... High Unreviewed
CVE-2024-29167 was published Apr 4, 2024
An issue in D-Link COVR 1100, 1102, 1103 AC1200 Dual-Band Whole-Home Mesh Wi-Fi System (Hardware... High Unreviewed
CVE-2023-52043 was published Apr 4, 2024
Cross Site Scripting vulnerability in Leantime v3.0.6 allows attackers to execute arbitrary code... High Unreviewed
CVE-2024-27705 was published Apr 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database