GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
313 advisories
Filter by severity
Improper Input Validation in Checkmk <2.2.0p15, <2.1.0p37, <=2.0.0p39 allows priviledged...
Low
Unreviewed
CVE-2023-23549
was published
Nov 15, 2023
Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1...
Low
Unreviewed
CVE-2024-24973
was published
Aug 14, 2024
Improper input validation in AMD μProf could allow an attacker to perform a write to an invalid...
Low
Unreviewed
CVE-2023-31366
was published
Aug 13, 2024
Improper Input Validation of query search results for private field data in PingIDM OPENIDM ...
Low
Unreviewed
CVE-2024-23600
was published
Aug 1, 2024
Insufficient verification vulnerability in the system sharing pop-up module
Impact: Successful...
Low
Unreviewed
CVE-2024-32989
was published
May 14, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation...
Low
Unreviewed
CVE-2024-36226
was published
Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation...
Low
Unreviewed
CVE-2024-26126
was published
Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation...
Low
Unreviewed
CVE-2024-26127
was published
Jun 13, 2024
Improper input validation in some Intel(R) CBI software before version 1.1.0 may allow an...
Low
Unreviewed
CVE-2023-43745
was published
May 16, 2024
Dell Repository Manager, versions 3.4.2 through 3.4.4,contains a Path Traversal vulnerability in...
Low
Unreviewed
CVE-2024-28977
was published
Apr 24, 2024
cPanel before 74.0.8 allows local users to disable the ClamAV daemon (SEC-409).
Low
Unreviewed
CVE-2018-20873
was published
May 24, 2022
cPanel before 74.0.0 allows file-rename operations during account renames (SEC-442).
Low
Unreviewed
CVE-2018-20893
was published
May 24, 2022
The get_parent_resource function in repos.c in mod_dav_svn Apache HTTPD server module in...
Low
Unreviewed
CVE-2013-4558
was published
May 17, 2022
When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using...
Low
Unreviewed
CVE-2022-35252
was published
Sep 25, 2022
NVIDIA nvTIFF Library for Windows and Linux contains a vulnerability where improper input...
Low
Unreviewed
CVE-2024-0080
was published
Apr 5, 2024
NVIDIA nvJPEG2000 Library for Windows and Linux contains a vulnerability where improper input...
Low
Unreviewed
CVE-2023-31028
was published
Apr 5, 2024
An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior...
Low
Unreviewed
CVE-2023-3906
was published
Sep 29, 2023
Adobe Commerce versions 2.4.6 (and earlier), 2.4.5-p2 (and earlier) and 2.4.4-p3 (and earlier)...
Low
Unreviewed
CVE-2023-29293
was published
Jun 15, 2023
A segmentation fault flaw was found in the Advancecomp package. This may lead to decreased...
Low
Unreviewed
CVE-2023-2961
was published
Jun 6, 2023
cPanel before 62.0.17 allows file overwrite when renaming an account (SEC-219).
Low
Unreviewed
CVE-2017-18458
was published
May 24, 2022
cPanel before 68.0.15 allows collisions because PostgreSQL databases can be assigned to multiple...
Low
Unreviewed
CVE-2017-18392
was published
May 24, 2022
cPanel before 71.9980.37 allows arbitrary file-unlink operations via the cPAddons moderation...
Low
Unreviewed
CVE-2018-20897
was published
May 24, 2022
An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the...
Low
Unreviewed
CVE-2018-10947
was published
May 24, 2022
** DISPUTED ** An Improper Input Validation vulnerability affecting the FTP service running on...
Low
Unreviewed
CVE-2023-6950
was published
Apr 2, 2024
A Improper Input Validation issue affecting the v2_sdk_service running on a set of DJI drone...
Low
Unreviewed
CVE-2023-51453
was published
Apr 2, 2024
ProTip!
Advisories are also available from the
GraphQL API