Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

238,908 advisories

Loading
A vulnerability was found in PHPGurukul Small CRM 1.0 and classified as critical. This issue... Moderate Unreviewed
CVE-2024-13000 was published Dec 29, 2024
A vulnerability was found in PHPGurukul Small CRM 1.0. It has been classified as critical.... Moderate Unreviewed
CVE-2024-13001 was published Dec 29, 2024
A vulnerability has been found in PHPGurukul Small CRM 1.0 and classified as critical. This... Moderate Unreviewed
CVE-2024-12999 was published Dec 29, 2024
A vulnerability, which was classified as problematic, was found in code-projects Online Car... Moderate Unreviewed
CVE-2024-12998 was published Dec 29, 2024
An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35 and 7.10.x through 7.10.0.18.... Moderate Unreviewed
CVE-2024-54452 was published Dec 27, 2024
A race condition vulnerability in SimplCommerce at commit... Moderate Unreviewed
CVE-2024-53476 was published Dec 27, 2024
An issue was discovered in Kurmi Provisioning Suite 7.9.0.33. If an X-Forwarded-For header is... Critical Unreviewed
CVE-2024-54450 was published Dec 27, 2024
A cross-site scripting (XSS) vulnerability in the graphicCustomization.do page in Kurmi... Moderate Unreviewed
CVE-2024-54451 was published Dec 27, 2024
Integer overflow vulnerability exists in SimplCommerce at commit... Critical Unreviewed
CVE-2024-50944 was published Dec 27, 2024
An improper access control vulnerability exists in SimplCommerce at commit... High Unreviewed
CVE-2024-50945 was published Dec 27, 2024
Some Huawei wearables have a vulnerability of not verifying the actual data size when reading... High Unreviewed
CVE-2021-22484 was published Dec 28, 2024
Software installed and run as a non-privileged user may conduct improper GPU system calls to... High Unreviewed
CVE-2024-46973 was published Dec 28, 2024
Software installed and run as a non-privileged user can trigger the GPU kernel driver to write to... High Unreviewed
CVE-2024-43705 was published Dec 28, 2024
A Server-Side Request Forgery (SSRF) in smarts-srl.com Smart Agent v.1.1.0 allows a remote... High Unreviewed
CVE-2024-50714 was published Dec 28, 2024
SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary... Critical Unreviewed
CVE-2024-50717 was published Dec 27, 2024
SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary... Critical Unreviewed
CVE-2024-50716 was published Dec 27, 2024
An issue in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive... High Unreviewed
CVE-2024-50715 was published Dec 27, 2024
Dcat Admin v2.2.0-beta contains a cross-site scripting (XSS) vulnerability in /admin/articles... Moderate Unreviewed
CVE-2024-54774 was published Dec 28, 2024
Apache NiFi 1.10.0 through 2.0.0 are missing fine-grained authorization checking for Parameter... Low Unreviewed
CVE-2024-56512 was published Dec 28, 2024
Some Huawei wearables have a permission management vulnerability. High Unreviewed
CVE-2021-37000 was published Dec 28, 2024
Dcat-Admin v2.2.0-beta and v2.2.2-beta contains a Cross-Site Scripting (XSS) vulnerability via ... Moderate Unreviewed
CVE-2024-54775 was published Dec 28, 2024
A vulnerability classified as problematic has been found in ruifang-tech Rebuild 3.8.6. This... Moderate Unreviewed
CVE-2024-12995 was published Dec 28, 2024
A vulnerability was found in running-elephant Datart 1.0.0-rc3. It has been rated as critical.... Moderate Unreviewed
CVE-2024-12994 was published Dec 28, 2024
In the Linux kernel, the following vulnerability has been resolved: mailbox: mtk-cmdq: fix wrong... Unknown Unreviewed
CVE-2024-56684 was published Dec 28, 2024
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check... Unknown Unreviewed
CVE-2024-56692 was published Dec 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database