GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,610
Composer 4,714
Erlang 34
GitHub Actions 28
Go 2,300
Maven 5,576
npm 3,942
NuGet 708
pip 3,711
Pub 12
RubyGems 920
Rust 960
Swift 38

Unreviewed advisories

All unreviewed 256,765

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,033 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The file upload functionality of Ai3 QbiBot does not properly restrict types of uploaded files,... High Unreviewed

CVE-2024-3778 was published Apr 15, 2024

Unrestricted file upload vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). This... High Unreviewed

CVE-2024-3705 was published Apr 12, 2024

The EnvíaloSimple: Email Marketing y Newsletters plugin for WordPress is vulnerable to Cross-Site... High Unreviewed

CVE-2024-2125 was published Apr 9, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Moove Agency Import XML and RSS... High Unreviewed

CVE-2024-31292 was published Apr 7, 2024

projeqtor up to 11.2.0 was discovered to contain a remote code execution (RCE) vulnerability via... High Unreviewed

CVE-2024-29387 was published Apr 4, 2024

The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient... High Unreviewed

CVE-2024-3022 was published Apr 4, 2024

File Upload vulnerability in lepton v.7.1.0 allows a remote authenticated attackers to execute... High Unreviewed

CVE-2024-29514 was published Apr 2, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Techeshta Layouts for Elementor... High Unreviewed

CVE-2024-30533 was published Mar 31, 2024

A vulnerability exists in the stb-language file handling that affects the RTU500 series product... High Unreviewed

CVE-2024-1531 was published Mar 27, 2024

A vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been declared as... High Unreviewed

CVE-2024-2930 was published Mar 27, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Trustindex.Io Widgets for Google... High Unreviewed

CVE-2023-48275 was published Mar 26, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in mndpsingh287 Theme Editor.This... High Unreviewed

CVE-2023-6091 was published Mar 26, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in ThemeFusion Avada.This issue... High Unreviewed

CVE-2023-39307 was published Mar 26, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in OnTheGoSystems Types.This issue... High Unreviewed

CVE-2023-27440 was published Mar 26, 2024

File Upload vulnerability in lepton v.7.1.0 allows a remote authenticated attackers to execute... High Unreviewed

CVE-2024-29515 was published Mar 25, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Gesundheit Bewegt GmbH Zippy... High Unreviewed

CVE-2024-27964 was published Mar 21, 2024

The Management App for WooCommerce – Order notifications, Order management, Lead management,... High Unreviewed

CVE-2024-1205 was published Mar 20, 2024

greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the load_obj... High Unreviewed

CVE-2024-28425 was published Mar 14, 2024

A path traversal vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in edge-app... High Unreviewed

CVE-2024-0800 was published Mar 13, 2024

The Brizy – Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2024-1311 was published Mar 13, 2024

The Booster Elite for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads... High Unreviewed

CVE-2024-1986 was published Mar 7, 2024

File Upload vulnerability in Byzro Network Smart s42 Management Platform v.S42 allows a local... High Unreviewed

CVE-2024-27733 was published Mar 7, 2024

The Avada | Website Builder For WordPress & WooCommerce theme for WordPress is vulnerable to... High Unreviewed

CVE-2024-1468 was published Feb 29, 2024

F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an... High Unreviewed

CVE-2024-25832 was published Feb 29, 2024

IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 allows the attacker... High Unreviewed

CVE-2023-25921 was published Feb 29, 2024

Previous 1 2 … 6 7 8 9 10 … 41 42 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,033 advisories