GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,003
Composer 4,299
Erlang 31
GitHub Actions 21
Go 2,064
Maven 5,240
npm 3,744
NuGet 668
pip 3,424
Pub 12
RubyGems 892
Rust 877
Swift 36

Unreviewed advisories

All unreviewed 239,960

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

898 advisories

Filter by severity

Sort by

Least recently updated

Unrestricted Upload of File with Dangerous Type vulnerability in Myriad Solutionz Property Lot... Critical Unreviewed

CVE-2024-49331 was published Oct 20, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Vivek Tamrakar WP REST API FNS... Critical Unreviewed

CVE-2024-49329 was published Oct 20, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Redwan Hilali WP Dropbox Dropins... Critical Unreviewed

CVE-2024-49607 was published Oct 20, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in 酱茄 JiangQie Free Mini Program... Critical Unreviewed

CVE-2024-49314 was published Oct 17, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Gora Tech LLC Cooked Pro.This... Critical Unreviewed

CVE-2024-49291 was published Oct 17, 2024

ClassCMS <=4.8 is vulnerable to file inclusion in the nowView method in/class/cms/cms.php, which... Critical Unreviewed

CVE-2024-48180 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Limb WordPress Gallery Plugin –... Critical Unreviewed

CVE-2024-49260 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Joshua Clayton Feed Comments... Critical Unreviewed

CVE-2024-49216 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Denis Azz Anonim Posting allows... Critical Unreviewed

CVE-2024-49257 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in xaraartech External featured... Critical Unreviewed

CVE-2024-48027 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in THATplugin Iconize.This issue... Critical Unreviewed

CVE-2024-47649 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Shafiq Digital Lottery allows... Critical Unreviewed

CVE-2024-49242 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Fliperrr Team Creates 3D... Critical Unreviewed

CVE-2024-48034 was published Oct 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Takayuki Imanishi ACF Images... Critical Unreviewed

CVE-2024-48035 was published Oct 16, 2024

The Frontend File Manager (versions < 4.0), N-Media Post Front-end Form (versions < 1.1) plugins... Critical Unreviewed

CVE-2016-15042 was published Oct 16, 2024

The ZoomSounds plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... Critical Unreviewed

CVE-2021-4449 was published Oct 16, 2024

The WordPress Mega Menu plugin for WordPress is vulnerable to Arbitrary File Creation in versions... Critical Unreviewed

CVE-2021-4443 was published Oct 16, 2024

An issue in Wanxing Technology Yitu Project Management Kirin Edition 2.3.6 allows a remote... Critical Unreviewed

CVE-2024-48781 was published Oct 15, 2024

File Upload vulnerability in DYCMS Open-Source Version v2.0.9.41 allows a remote attacker to... Critical Unreviewed

CVE-2024-48782 was published Oct 15, 2024

Enterprise Cloud Database from Ragic does not properly validate the file type for uploads.... Critical Unreviewed

CVE-2024-9985 was published Oct 15, 2024

An arbitrary file upload vulnerability in the ProductAction.entphone interface of Zhejiang... Critical Unreviewed

CVE-2024-46088 was published Oct 11, 2024

The Wechat Social login plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2024-9108 was published Oct 1, 2024

The Jupiter X Core plugin for WordPress is vulnerable to arbitrary file uploads due to a... Critical Unreviewed

CVE-2024-7772 was published Sep 26, 2024

Vulnerability in the Scriptcase application version 9.4.019, which involves the arbitrary upload... Critical Unreviewed

CVE-2024-8940 was published Sep 25, 2024

File Upload vulnerability in CS-Cart MultiVendor 4.16.1 allows remote attackers to run arbitrary... Critical Unreviewed

CVE-2023-26686 was published Sep 25, 2024

Previous 1 2 3 4 5 6 7 … 35 36 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

898 advisories