Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,971
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+

10,412 advisories

This affects versions of the package opencart/opencart from 4.0.0.0. An Arbitrary File Creation... Moderate Unreviewed
CVE-2024-21519 was published Jun 22, 2024
A flaw was found in the Poppler's Pdfinfo utility. This issue occurs when using -dests parameter... Moderate Unreviewed
CVE-2024-6239 was published Jun 21, 2024
Improper Input Validation vulnerability in ABB 800xA Base. An attacker who successfully exploited... Moderate Unreviewed
CVE-2024-3036 was published Jun 21, 2024
Lightning Network Daemon (LND)'s onion processing logic leads to a denial of service Moderate
CVE-2024-38359 was published for github.com/lightningnetwork/lnd (Go) Jun 20, 2024
morehouse
There is an insufficient input validation vulnerability in the Warehouse component of Absolute... Moderate Unreviewed
CVE-2024-37346 was published Jun 20, 2024
Apache Superset server arbitrary file read Moderate
CVE-2024-34693 was published for apache-superset (pip) Jun 20, 2024
socket.io has an unhandled 'error' event High
CVE-2024-38355 was published for socket.io (npm) Jun 19, 2024
Y0ursTruly
When Bazel Plugin in intellij imports a project (either using "import project" or "Auto import")... Unknown Unreviewed
CVE-2024-5899 was published Jun 18, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally... High Unreviewed
CVE-2024-32858 was published Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally... High Unreviewed
CVE-2024-32859 was published Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally... High Unreviewed
CVE-2024-32860 was published Jun 13, 2024
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally... Moderate Unreviewed
CVE-2024-32856 was published Jun 13, 2024
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an... Critical Unreviewed
CVE-2024-34108 was published Jun 13, 2024
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an... High Unreviewed
CVE-2024-34109 was published Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation... Low Unreviewed
CVE-2024-36226 was published Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation... Low Unreviewed
CVE-2024-26127 was published Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation... Low Unreviewed
CVE-2024-26126 was published Jun 13, 2024
An improper input validation vulnerability in the SGI Image Codec of QNX SDP version(s) 6.6, 7.0,... Critical Unreviewed
CVE-2024-35213 was published Jun 11, 2024
Win32k Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30087 was published Jun 11, 2024
Windows Wi-Fi Driver Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30078 was published Jun 11, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... High Unreviewed
CVE-2024-35212 was published Jun 11, 2024
Import functionality is vulnerable to DNS rebinding attacks between verification and processing... Unknown Unreviewed
CVE-2024-36471 was published Jun 11, 2024
In mintplex-labs/anything-llm, a vulnerability exists in the thread update process that allows... High Unreviewed
CVE-2024-3150 was published Jun 6, 2024
Arbitrary file deletion in litellm Moderate
CVE-2024-4888 was published for litellm (pip) Jun 6, 2024
Authentication bypass in dtale Critical
CVE-2024-3408 was published for dtale (pip) Jun 6, 2024
ProTip! Advisories are also available from the GraphQL API