GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,856
Composer 4,262
Erlang 31
GitHub Actions 21
Go 2,030
Maven 5,210
npm 3,732
NuGet 662
pip 3,409
Pub 12
RubyGems 891
Rust 865
Swift 36

Unreviewed advisories

All unreviewed 237,405

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

674 advisories

Filter by severity

Sort by

Least recently updated

CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and... Critical Unreviewed

CVE-2024-11737 was published Dec 11, 2024

Improper Input Validation vulnerability in ABB ASPECT-Enterprise on Linux, ABB NEXUS Series on... Critical Unreviewed

CVE-2024-6298 was published Jul 5, 2024

A vulnerability can occur when capturing a media stream when the media source type is changed as... Critical Unreviewed

CVE-2018-5156 was published May 14, 2022

An Improper Input Validation vulnerability in Zscaler Client Connector on Linux allows Privilege... Critical Unreviewed

CVE-2023-28805 was published Oct 23, 2023

Chunghwa Telecom NOKIA G-040W-Q Firewall function has a vulnerability of input validation for... Critical Unreviewed

CVE-2023-41355 was published Nov 3, 2023

Enabling Simple Ajax Uploader plugin included in Laragon open-source software allows for a remote... Critical Unreviewed

CVE-2024-0864 was published Feb 29, 2024

Memory corruption while redirecting log file to any file location with any file name. Critical Unreviewed

CVE-2024-33066 was published Oct 7, 2024

Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server.This... Critical Unreviewed

CVE-2023-33934 was published Aug 9, 2023

Improper input validation in Zoom Desktop Client for Windows before 5.14.7 may allow an... Critical Unreviewed

CVE-2023-39216 was published Aug 8, 2023

An unvalidated input in a library function responsible for communicating between secure and non... Critical Unreviewed

CVE-2023-4020 was published Dec 15, 2023

In wlan service, there is a possible out of bounds write due to improper input validation. This... Critical Unreviewed

CVE-2024-20017 was published Mar 4, 2024

Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and... Critical Unreviewed

CVE-2024-24691 was published Feb 14, 2024

Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection.This... Critical Unreviewed

CVE-2024-7591 was published Sep 5, 2024

Improper Input Validation vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise,... Critical Unreviewed

CVE-2023-0636 was published Jul 6, 2023

Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify... Critical Unreviewed

CVE-2024-8889 was published Sep 18, 2024

Due to an improper input validation, an unauthenticated threat actor can send a malicious message... Critical Unreviewed

CVE-2024-5989 was published Jun 25, 2024

Due to an improper input validation, an unauthenticated threat actor can send a malicious message... Critical Unreviewed

CVE-2024-5988 was published Jun 25, 2024

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow... Critical Unreviewed

CVE-2022-47966 was published Jan 18, 2023

Atlassian has been made aware of an issue reported by a handful of customers where external... Critical Unreviewed

CVE-2023-22515 was published Oct 4, 2023

Improper Input Validation vulnerability in Hillstone Networks Hillstone Networks Web Application... Critical Unreviewed

CVE-2024-8073 was published Aug 26, 2024

The 1E-Exchange-URLResponseTime instruction that is part of the Network product pack available on... Critical Unreviewed

CVE-2023-45161 was published Nov 6, 2023

The 1E-Exchange-CommandLinePing instruction that is part of the Network product pack available... Critical Unreviewed

CVE-2023-45163 was published Nov 6, 2023

An issue in Vypor Attack API System v.1.0 allows a remote attacker to execute arbitrary code via... Critical Unreviewed

CVE-2024-44808 was published Sep 4, 2024

A remote code execution (RCE) vulnerability exists in the Pi Camera project, version 1.0,... Critical Unreviewed

CVE-2024-44809 was published Sep 4, 2024

A remote code execution vulnerability exists in the Rockwell Automation ThinManager® ThinServer™... Critical Unreviewed

CVE-2024-7988 was published Aug 26, 2024

Previous 1 2 3 4 5 … 26 27 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

674 advisories