Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,347
Erlang
31
GitHub Actions
22
Go
2,117
Maven
5,000+
npm
3,768
NuGet
680
pip
3,457
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

406 advisories

Loading
Server-Side Request Forgery (SSRF) vulnerability in 2day.Sk, Webikon SuperFaktura WooCommerce... Moderate Unreviewed
CVE-2024-32803 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Pavex Embed Google Photos album.This issue... Moderate Unreviewed
CVE-2024-32775 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Foliovision FV Flowplayer Video Player.This... Moderate Unreviewed
CVE-2024-32955 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Webangon The Pack Elementor.This issue... Moderate Unreviewed
CVE-2024-32718 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Culqi.This issue affects Culqi: from n/a... Moderate Unreviewed
CVE-2024-32819 was published Apr 24, 2024
Server-Side Request Forgery (SSRF) vulnerability in Really Simple Plugins Really Simple SSL.This... Moderate Unreviewed
CVE-2024-31229 was published Apr 18, 2024
The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator... Moderate Unreviewed
CVE-2023-6805 was published Apr 17, 2024
IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3... Moderate Unreviewed
CVE-2024-22329 was published Apr 17, 2024
Server-Side Request Forgery (SSRF) vulnerability in ActiveCampaign.This issue affects... Moderate Unreviewed
CVE-2024-32430 was published Apr 15, 2024
Server-Side Request Forgery (SSRF) vulnerability in Wappointment Appointment Bookings for Zoom... Moderate Unreviewed
CVE-2024-32454 was published Apr 15, 2024
Users with low privileges can perform certain AJAX actions. In this vulnerability instance,... Moderate Unreviewed
CVE-2024-3448 was published Apr 10, 2024
Server-side request forgery (SSRF) in PingFederate allows unauthenticated http requests to attack... Moderate Unreviewed
CVE-2023-40148 was published Apr 10, 2024
The Avada | Website Builder For WordPress & WooCommerce theme for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-2343 was published Apr 9, 2024
SAP NetWeaver application, due to insufficient input validation, allows an attacker to send a... Moderate Unreviewed
CVE-2024-27898 was published Apr 9, 2024
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2024-20332 was published Apr 3, 2024
Server-Side Request Forgery (SSRF) vulnerability in Nelio Software Nelio Content.This issue... Moderate Unreviewed
CVE-2024-30531 was published Apr 2, 2024
Server-Side Request Forgery (SSRF) vulnerability in Kadence WP Gutenberg Blocks by Kadence Blocks... Moderate Unreviewed
CVE-2024-24888 was published Apr 2, 2024
Server-Side Request Forgery (SSRF) vulnerability in Builderall Team Builderall Builder for... Moderate Unreviewed
CVE-2024-30532 was published Apr 2, 2024
Server-Side Request Forgery (SSRF) vulnerability in Brave Brave Popup Builder.This issue affects... Moderate Unreviewed
CVE-2024-30453 was published Mar 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in NiteoThemes CMP – Coming Soon & Maintenance... Moderate Unreviewed
CVE-2023-50374 was published Mar 28, 2024
Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This... Moderate Unreviewed
CVE-2024-29090 was published Mar 28, 2024
The CRM platform Twenty version 0.3.0 is vulnerable to SSRF via file upload. Moderate Unreviewed
CVE-2024-28435 was published Mar 25, 2024
A vulnerability, which was classified as critical, was found in lakernote EasyAdmin up to... Moderate Unreviewed
CVE-2024-2828 was published Mar 22, 2024
A vulnerability, which was classified as critical, has been found in lakernote EasyAdmin up to... Moderate Unreviewed
CVE-2024-2827 was published Mar 22, 2024
Server Side Request Forgery (SSRF) vulnerability in Likeshop before 2.5.7 allows attackers to... Moderate Unreviewed
CVE-2024-24028 was published Mar 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database