GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,892
Composer 4,266
Erlang 31
GitHub Actions 21
Go 2,041
Maven 5,224
npm 3,733
NuGet 662
pip 3,414
Pub 12
RubyGems 891
Rust 866
Swift 36

Unreviewed advisories

All unreviewed 238,121

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

398 advisories

Filter by severity

Sort by

Least recently updated

The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This... Critical Unreviewed

CVE-2024-28075 was published May 14, 2024

Voltronic Power ViewPower Deserialization of Untrusted Data Remote Code Execution Vulnerability.... Critical Unreviewed

CVE-2023-51576 was published May 3, 2024

Inductive Automation Ignition ParameterVersionJavaSerializationCodec Deserialization of Untrusted... Critical Unreviewed

CVE-2023-39475 was published May 3, 2024

Inductive Automation Ignition JavaSerializationCodec Deserialization of Untrusted Data Remote... Critical Unreviewed

CVE-2023-39476 was published May 3, 2024

Deserialization of Untrusted Data vulnerability in 8theme XStore Core.This issue affects XStore... Critical Unreviewed

CVE-2024-33553 was published Apr 29, 2024

Voltronic Power ViewPower Pro Deserialization of Untrusted Data Remote Code Execution... Critical Unreviewed

CVE-2023-51570 was published Apr 2, 2024

A deserialization vulnerability in the FASTJSON component of Alldata v0.4.6 allows attackers to... Critical Unreviewed

CVE-2024-29433 was published Apr 1, 2024

Deserialization of Untrusted Data vulnerability in Filter Custom Fields & Taxonomies Light.This... Critical Unreviewed

CVE-2024-31094 was published Mar 31, 2024

Deserialization of Untrusted Data vulnerability in WPDeveloper BetterDocs.This issue affects... Critical Unreviewed

CVE-2024-30226 was published Mar 28, 2024

Deserialization of Untrusted Data vulnerability in Wholesale Team WholesaleX.This issue affects... Critical Unreviewed

CVE-2024-30224 was published Mar 28, 2024

Deserialization of Untrusted Data vulnerability in WPENGINE, INC. WP Migrate.This issue affects... Critical Unreviewed

CVE-2024-30225 was published Mar 28, 2024

Deserialization of Untrusted Data vulnerability in INFINITUM FORM Geo Controller.This issue... Critical Unreviewed

CVE-2024-30227 was published Mar 28, 2024

Deserialization of Untrusted Data vulnerability in Hercules Design Hercules Core.This issue... Critical Unreviewed

CVE-2024-30228 was published Mar 28, 2024

Deserialization of Untrusted Data vulnerability in Repute Infosystems ARMember.This issue affects... Critical Unreviewed

CVE-2024-30223 was published Mar 28, 2024

The Artica-Proxy administrative web application will deserialize arbitrary PHP objects supplied... Critical Unreviewed

CVE-2024-2054 was published Mar 21, 2024

In Progress® Telerik® Report Server versions prior to 2024 Q1 (10.0.24.130), a remote code... Critical Unreviewed

CVE-2024-1800 was published Mar 20, 2024

nGrinder before 3.5.9 uses old version of SnakeYAML, which could allow remote attacker to execute... Critical Unreviewed

CVE-2024-28212 was published Mar 7, 2024

nGrinder before 3.5.9 allows connection to malicious JMX/RMI server by default, which could be... Critical Unreviewed

CVE-2024-28211 was published Mar 7, 2024

An issue was discovered in Tunis Soft "Product Designer" (productdesigner) module for PrestaShop... Critical Unreviewed

CVE-2024-24302 was published Mar 3, 2024

An issue in WuKongOpenSource WukongCRM v.72crm_9.0.1_20191202 allows a remote attacker to execute... Critical Unreviewed

CVE-2024-23052 was published Feb 29, 2024

The SolarWinds Access Rights Manager was found to be susceptible to a Remote Code Execution... Critical Unreviewed

CVE-2023-40057 was published Feb 15, 2024

Deserialization of Untrusted Data vulnerability in G5Theme ERE Recently Viewed – Essential Real... Critical Unreviewed

CVE-2024-24797 was published Feb 12, 2024

Deserialization of Untrusted Data vulnerability in WP Swings Coupon Referral Program.This issue... Critical Unreviewed

CVE-2024-25100 was published Feb 12, 2024

The Better Search Replace plugin for WordPress is vulnerable to PHP Object Injection in all... Critical Unreviewed

CVE-2023-6933 was published Feb 6, 2024

IBM Operational Decision Manager 8.10.3, 8.10.4, 8.10.5.1, 8.11, 8.11.0.1, and 8.12.0.1 could... Critical Unreviewed

CVE-2024-22320 was published Feb 2, 2024

Previous 1 2 3 4 5 6 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

398 advisories