GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,041
Maven
5,000+
npm
3,733
NuGet
662
pip
3,414
Pub
12
RubyGems
891
Rust
866
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
437 advisories
Filter by severity
Deserialization of Untrusted Data vulnerability in PlexTrac (Runbooks modules) which allows...
High
Unreviewed
CVE-2024-12687
was published
Dec 16, 2024
In Progress Telerik UI for WPF versions prior to 2024 Q4 (2024.4.1213), a code execution attack...
High
Unreviewed
CVE-2024-10095
was published
Dec 16, 2024
Deserialization of Untrusted Data vulnerability in Themeum WP Mega Menu allows Object Injection...
High
Unreviewed
CVE-2024-54282
was published
Dec 13, 2024
Deserialization of Untrusted Data vulnerability in PlexTrac (Runbooks modules) which allows...
High
Unreviewed
CVE-2024-11839
was published
Dec 13, 2024
The Print Science Designer plugin for WordPress is vulnerable to PHP Object Injection in all...
High
Unreviewed
CVE-2024-12312
was published
Dec 12, 2024
Microsoft/Muzic Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-49063
was published
Dec 12, 2024
Microsoft SharePoint Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-49070
was published
Dec 12, 2024
GFI Archiver Core Service Deserialization of Untrusted Data Remote Code Execution Vulnerability....
High
Unreviewed
CVE-2024-11947
was published
Dec 12, 2024
GFI Archiver Store Service Deserialization of Untrusted Data Remote Code Execution Vulnerability....
High
Unreviewed
CVE-2024-11949
was published
Dec 12, 2024
In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7, and versions below 3.2.461 and 3.7...
High
Unreviewed
CVE-2024-53247
was published
Dec 10, 2024
A vulnerability has been identified in SIMATIC S7-PLCSIM V16 (All versions), SIMATIC S7-PLCSIM...
High
Unreviewed
CVE-2024-49849
was published
Dec 10, 2024
The Gallery plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and...
High
Unreviewed
CVE-2024-11501
was published
Dec 7, 2024
The Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms...
High
Unreviewed
CVE-2024-10587
was published
Dec 4, 2024
A java deserialization vulnerability in HPE Remote Insight Support allows an unauthenticated...
High
Unreviewed
CVE-2024-53673
was published
Nov 27, 2024
Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execution...
High
Unreviewed
CVE-2024-11392
was published
Nov 23, 2024
Hugging Face Transformers MaskFormer Model Deserialization of Untrusted Data Remote Code...
High
Unreviewed
CVE-2024-11393
was published
Nov 23, 2024
Hugging Face Transformers Trax Model Deserialization of Untrusted Data Remote Code Execution...
High
Unreviewed
CVE-2024-11394
was published
Nov 23, 2024
Allegra renderFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability....
High
Unreviewed
CVE-2024-5579
was published
Nov 22, 2024
Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability....
High
Unreviewed
CVE-2024-5580
was published
Nov 22, 2024
In writeToParcel of MediaPlayer.java, there is a possible serialization/deserialization mismatch...
High
Unreviewed
CVE-2018-9474
was published
Nov 20, 2024
There exists a code execution vulnerability in the Car App Android Jetpack Library. In the...
High
Unreviewed
CVE-2024-10382
was published
Nov 20, 2024
The Clone plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and...
High
Unreviewed
CVE-2024-10913
was published
Nov 20, 2024
Deserialization of Untrusted Data vulnerability in Modeltheme QRMenu Restaurant QR Menu Lite...
High
Unreviewed
CVE-2024-52445
was published
Nov 20, 2024
Deserialization of Untrusted Data vulnerability in Apache HertzBeat.
This vulnerability can only...
High
Unreviewed
CVE-2024-41151
was published
Nov 18, 2024
In onReceive of AppRestrictionsFragment.java, there is a possible escalation of privilege due to...
High
Unreviewed
CVE-2024-43080
was published
Nov 13, 2024
ProTip!
Advisories are also available from the
GraphQL API