GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,892
Composer 4,266
Erlang 31
GitHub Actions 21
Go 2,041
Maven 5,224
npm 3,733
NuGet 662
pip 3,414
Pub 12
RubyGems 891
Rust 866
Swift 36

Unreviewed advisories

All unreviewed 238,121

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

398 advisories

Filter by severity

Sort by

Least recently updated

Deserialization of Untrusted Data vulnerability in DMC Airin Blog allows Object Injection.This... Critical Unreviewed

CVE-2024-52413 was published Nov 17, 2024

Deserialization of Untrusted Data vulnerability in Phoenixheart Referrer Detector allows Object... Critical Unreviewed

CVE-2024-52410 was published Nov 17, 2024

Deserialization of Untrusted Data vulnerability in Anthony Carbon WDES Responsive Mobile Menu... Critical Unreviewed

CVE-2024-52414 was published Nov 17, 2024

Deserialization of Untrusted Data vulnerability in Phan An AJAX Random Posts allows Object... Critical Unreviewed

CVE-2024-52409 was published Nov 17, 2024

A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to... Critical Unreviewed

CVE-2024-37285 was published Nov 14, 2024

A vulnerability has been identified in PP TeleControl Server Basic 1000 to 5000 V3.1 (6NH9910... Critical Unreviewed

CVE-2024-44102 was published Nov 12, 2024

Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a... Critical Unreviewed

CVE-2024-10456 was published Oct 30, 2024

Deserialization of Untrusted Data vulnerability in Daniel Schmitzer DS.DownloadList allows Object... Critical Unreviewed

CVE-2024-50507 was published Oct 30, 2024

A Deserialization of Untrusted Data vulnerability in chainer v7.8.1.post1 leads to execution of... Critical Unreviewed

CVE-2024-48206 was published Oct 29, 2024

In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. Critical Unreviewed

CVE-2024-48063 was published Oct 29, 2024

Deserialization of Untrusted Data vulnerability in Brandon Clark SiteBuilder Dynamic Components... Critical Unreviewed

CVE-2024-49625 was published Oct 20, 2024

Deserialization of Untrusted Data vulnerability in Smartdevth Advanced Advertising System allows... Critical Unreviewed

CVE-2024-49624 was published Oct 20, 2024

Deserialization of Untrusted Data vulnerability in Piyushmca Shipyaari Shipping Management allows... Critical Unreviewed

CVE-2024-49626 was published Oct 20, 2024

Deserialization of Untrusted Data vulnerability in Giveaway Boost allows Object Injection.This... Critical Unreviewed

CVE-2024-49332 was published Oct 20, 2024

Deserialization of Untrusted Data vulnerability in Scott Olson My Reading Library allows Object... Critical Unreviewed

CVE-2024-49318 was published Oct 17, 2024

Deserialization of Untrusted Data vulnerability in Grayson Robbins Disc Golf Manager allows... Critical Unreviewed

CVE-2024-48026 was published Oct 16, 2024

Deserialization of Untrusted Data vulnerability in Al Imran Akash Recently allows Object... Critical Unreviewed

CVE-2024-49218 was published Oct 16, 2024

Deserialization of Untrusted Data vulnerability in Boyan Raichev IP Loc8 allows Object Injection... Critical Unreviewed

CVE-2024-48028 was published Oct 16, 2024

Deserialization of Untrusted Data vulnerability in Gabriele Valenti Telecash Ricaricaweb allows... Critical Unreviewed

CVE-2024-48030 was published Oct 16, 2024

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP... Critical Unreviewed

CVE-2024-9634 was published Oct 16, 2024

Deserialization of Untrusted Data vulnerability in Elie Burstein, Baptiste Gourdin Talkback... Critical Unreviewed

CVE-2024-48033 was published Oct 11, 2024

Deserialization of Untrusted Data vulnerability in Eyecix JobSearch allows Object Injection.This... Critical Unreviewed

CVE-2024-47636 was published Oct 10, 2024

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP... Critical Unreviewed

CVE-2024-8353 was published Sep 28, 2024

The Prisna GWT – Google Website Translator plugin for WordPress is vulnerable to PHP Object... Critical Unreviewed

CVE-2024-8514 was published Sep 25, 2024

ColdFusion versions 2023.9, 2021.15 and earlier are affected by a Deserialization of Untrusted... Critical Unreviewed

CVE-2024-41874 was published Sep 13, 2024

Previous 1 2 3 4 5 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

398 advisories