GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,056 advisories
Filter by severity
A vulnerability was found in itsourcecode Online Bookstore 1.0. It has been rated as critical....
Moderate
Unreviewed
CVE-2024-9036
was published
Sep 20, 2024
A vulnerability classified as problematic was found in Codezips Online Shopping Portal 1.0....
Moderate
Unreviewed
CVE-2024-9038
was published
Sep 20, 2024
An arbitrary file upload vulnerability in the Media Manager function of Closed-Loop Technology...
High
Unreviewed
CVE-2024-40125
was published
Sep 19, 2024
The AliExpress Dropshipping with AliNext Lite plugin for WordPress is vulnerable to arbitrary...
High
Unreviewed
CVE-2024-2381
was published
Jun 19, 2024
Dedecms V5.7.115 contains an arbitrary code execution via file upload vulnerability in the backend.
High
Unreviewed
CVE-2024-46373
was published
Sep 18, 2024
Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the...
Critical
Unreviewed
CVE-2024-46377
was published
Sep 18, 2024
A unauthenticated Remote Code Execution (RCE) vulnerability is found in the SO Planning online...
Critical
Unreviewed
CVE-2024-27115
was published
Sep 11, 2024
Dr.ID Access Control System from SECOM does not properly validate a specific page parameter,...
Critical
Unreviewed
CVE-2024-7732
was published
Aug 14, 2024
A vulnerability, which was classified as critical, was found in PHPVibe 11.0.46. Affected is an...
Moderate
Unreviewed
CVE-2024-6083
was published
Jun 18, 2024
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2024-8242
was published
Sep 13, 2024
A vulnerability was found in FastCMS 0.1.0. It has been classified as critical. Affected is an...
Critical
Unreviewed
CVE-2023-0651
was published
Feb 2, 2023
An arbitrary file upload vulnerability in the component /admin/index.php of moziloCMS v3.0 allows...
High
Unreviewed
CVE-2024-44871
was published
Sep 10, 2024
SpiderControl SCADA Web Server has a vulnerability that could allow an
attacker to upload...
High
Unreviewed
CVE-2024-8232
was published
Sep 10, 2024
The Bit File Manager – 100% Free & Open Source File Manager and Code Editor for WordPress plugin...
High
Unreviewed
CVE-2024-7770
was published
Sep 10, 2024
TOTOlink EX1200L V9.3.5u.6146_B20201023 is vulnerable to arbitrary command execution via the...
Critical
Unreviewed
CVE-2023-51034
was published
Dec 22, 2023
Qualitor up to 8.24 is vulnerable to Remote Code Execution (RCE) via Arbitrary File Upload in...
Critical
Unreviewed
CVE-2024-44849
was published
Sep 9, 2024
A vulnerability, which was classified as critical, was found in SourceCodester Clinics Patient...
High
Unreviewed
CVE-2022-2297
was published
Jul 13, 2022
The Customizer Export/Import plugin for WordPress is vulnerable to arbitrary file uploads due to...
Moderate
Unreviewed
CVE-2024-7620
was published
Sep 7, 2024
File Upload vulnerability in Shibang Communications Co., Ltd. IP network intercom broadcasting...
High
Unreviewed
CVE-2024-31680
was published
Apr 17, 2024
A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-6280
was published
Jun 24, 2024
File Upload vulnerability in openeclass v.3.15 and before allows an attacker to execute arbitrary...
Critical
Unreviewed
CVE-2024-31777
was published
Jun 14, 2024
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user...
High
Unreviewed
CVE-2024-45171
was published
Sep 5, 2024
File upload restriction bypass vulnerability in PHPGurukul Job Portal 1.0, the exploitation of...
Critical
Unreviewed
CVE-2024-8463
was published
Sep 5, 2024
IBM webMethods Integration 10.15 could allow an authenticated user to upload and execute...
Critical
Unreviewed
CVE-2024-45076
was published
Sep 4, 2024
MCMS v5.4.1 has front-end file upload vulnerability which can lead to remote command execution.
High
Unreviewed
CVE-2024-42991
was published
Sep 3, 2024
ProTip!
Advisories are also available from the
GraphQL API