GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,459

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

953 advisories

Filter by severity

Sort by

Least recently updated

The 3D FlipBook, PDF Viewer, PDF Embedder – Real 3D FlipBook WordPress Plugin plugin for... High Unreviewed

CVE-2024-9849 was published Nov 16, 2024

parisneo/lollms-webui version 9.6 is vulnerable to Cross-Site Scripting (XSS) and Open Redirect... High Unreviewed

CVE-2024-5125 was published Nov 14, 2024

Webopac from Grand Vice info does not properly validate uploaded file types, allowing remote... High Unreviewed

CVE-2024-11017 was published Nov 11, 2024

File Upload vulnerability in Laravel CMS v.1.4.7 and before allows a remote attacker to execute... High Unreviewed

CVE-2024-51152 was published Nov 8, 2024

Unrestricted File Upload in the Discussions tab in Operately v.0.1.0 allows a privileged user to... High Unreviewed

CVE-2024-48093 was published Oct 30, 2024

*Unrestricted file upload in /SASStudio/SASStudio/sasexec/{sessionID}/{InternalPath} in SAS... High Unreviewed

CVE-2024-48734 was published Oct 30, 2024

An Unrestricted File Upload vulnerability exists in Sage 1000 v7.0.0, which allows authorized... High Unreviewed

CVE-2024-48646 was published Oct 30, 2024

The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-7985 was published Oct 29, 2024

File Upload vulnerability in Prison Management System v.1.0 allows a remote attacker to execute... High Unreviewed

CVE-2024-48594 was published Oct 28, 2024

An issue in SourceCodester Purchase Order Management System v1.0 allows a remote attacker to... High Unreviewed

CVE-2024-48454 was published Oct 24, 2024

An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800,... High Unreviewed

CVE-2024-45263 was published Oct 24, 2024

An arbitrary file upload vulnerability in the Ticket Generation function of Ladybird Web Solution... High Unreviewed

CVE-2024-46482 was published Oct 23, 2024

Administrative Management System from Wellchoose does not properly validate uploaded file types,... High Unreviewed

CVE-2024-10201 was published Oct 21, 2024

The affected product is vulnerable to unrestricted file uploads, which may allow an attacker to... High Unreviewed

CVE-2024-49398 was published Oct 17, 2024

The File Manager Pro plugin for WordPress is vulnerable to Limited JavaScript File Upload in all... High Unreviewed

CVE-2024-8918 was published Oct 16, 2024

The File Manager Pro plugin for WordPress is vulnerable to arbitrary backup file downloads and... High Unreviewed

CVE-2024-8746 was published Oct 16, 2024

The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2020-36842 was published Oct 16, 2024

The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing... High Unreviewed

CVE-2024-9981 was published Oct 15, 2024

InDesign Desktop versions 19.4, 18.5.3 and earlier are affected by an Unrestricted Upload of File... High Unreviewed

CVE-2024-45137 was published Oct 9, 2024

InCopy versions 19.4, 18.5.3 and earlier are affected by an Unrestricted Upload of File with... High Unreviewed

CVE-2024-45136 was published Oct 9, 2024

Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Unrestricted Upload of... High Unreviewed

CVE-2024-47423 was published Oct 9, 2024

SAP BusinessObjects Business Intelligence Platform allows an authenticated user to send a... High Unreviewed

CVE-2024-37179 was published Oct 8, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Bit Apps Bit Form – Contact Form... High Unreviewed

CVE-2024-47319 was published Oct 5, 2024

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote... High Unreviewed

CVE-2024-37869 was published Oct 4, 2024

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote... High Unreviewed

CVE-2024-37868 was published Oct 4, 2024

Previous 1 2 3 4 5 … 38 39 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

953 advisories