GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,567
Composer 4,697
Erlang 34
GitHub Actions 28
Go 2,289
Maven 5,573
npm 3,936
NuGet 708
pip 3,706
Pub 12
RubyGems 919
Rust 959
Swift 38

Unreviewed advisories

All unreviewed 256,073

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,034 advisories

Filter by severity

Sort by

Least recently updated

The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-7985 was published Oct 29, 2024

File Upload vulnerability in Prison Management System v.1.0 allows a remote attacker to execute... High Unreviewed

CVE-2024-48594 was published Oct 28, 2024

In Cleo Harmony before 5.8.0.20, VLTrader before 5.8.0.20, and LexiCom before 5.8.0.20, there is... High Unreviewed

CVE-2024-50623 was published Oct 28, 2024

An issue in SourceCodester Purchase Order Management System v1.0 allows a remote attacker to... High Unreviewed

CVE-2024-48454 was published Oct 24, 2024

An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800,... High Unreviewed

CVE-2024-45263 was published Oct 24, 2024

An arbitrary file upload vulnerability in the Ticket Generation function of Ladybird Web Solution... High Unreviewed

CVE-2024-46482 was published Oct 23, 2024

Administrative Management System from Wellchoose does not properly validate uploaded file types,... High Unreviewed

CVE-2024-10201 was published Oct 21, 2024

The affected product is vulnerable to unrestricted file uploads, which may allow an attacker to... High Unreviewed

CVE-2024-49398 was published Oct 17, 2024

The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2020-36842 was published Oct 16, 2024

The File Manager Pro plugin for WordPress is vulnerable to arbitrary backup file downloads and... High Unreviewed

CVE-2024-8746 was published Oct 16, 2024

The File Manager Pro plugin for WordPress is vulnerable to Limited JavaScript File Upload in all... High Unreviewed

CVE-2024-8918 was published Oct 16, 2024

The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing... High Unreviewed

CVE-2024-9981 was published Oct 15, 2024

InCopy versions 19.4, 18.5.3 and earlier are affected by an Unrestricted Upload of File with... High Unreviewed

CVE-2024-45136 was published Oct 9, 2024

InDesign Desktop versions 19.4, 18.5.3 and earlier are affected by an Unrestricted Upload of File... High Unreviewed

CVE-2024-45137 was published Oct 9, 2024

Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Unrestricted Upload of... High Unreviewed

CVE-2024-47423 was published Oct 9, 2024

SAP BusinessObjects Business Intelligence Platform allows an authenticated user to send a... High Unreviewed

CVE-2024-37179 was published Oct 8, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Bit Apps Bit Form – Contact Form... High Unreviewed

CVE-2024-47319 was published Oct 5, 2024

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote... High Unreviewed

CVE-2024-37869 was published Oct 4, 2024

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote... High Unreviewed

CVE-2024-37868 was published Oct 4, 2024

This vulnerability exists in the Shilpi Client Dashboard due to improper validation of files... High Unreviewed

CVE-2024-47655 was published Oct 4, 2024

The WP Hotel Booking plugin for WordPress is vulnerable to arbitrary file uploads due to missing... High Unreviewed

CVE-2024-7855 was published Oct 2, 2024

An arbitrary file upload vulnerability in YPay 1.2.0 allows attackers to execute arbitrary code... High Unreviewed

CVE-2024-46441 was published Sep 27, 2024

The Advanced File Manager plugin for WordPress is vulnerable to arbitrary file uploads via the ... High Unreviewed

CVE-2024-8126 was published Sep 26, 2024

File Upload vulnerability in CS-Cart MultiVendor 4.16.1 allows remote attackers to run arbitrary... High Unreviewed

CVE-2023-26690 was published Sep 25, 2024

An arbitrary file upload vulnerability in the Media Manager function of Closed-Loop Technology... High Unreviewed

CVE-2024-40125 was published Sep 19, 2024

Previous 1 2 3 4 5 6 … 41 42 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,034 advisories