GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,138
Composer 4,333
Erlang 31
GitHub Actions 21
Go 2,094
Maven 5,263
npm 3,759
NuGet 678
pip 3,445
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,286

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

242,286 advisories

Filter by severity

Sort by

Least recently updated

In endCallForSubscriber of PhoneInterfaceManager.java, there is a possible way to prevent access... Critical Unreviewed

CVE-2017-13322 was published Jan 18, 2025

A reachable assertion in the oai_nas_5gmm_decode function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed

CVE-2024-24428 was published Jan 22, 2025

In NlpService, there is a possible way to obtain location information due to a missing permission... Moderate Unreviewed

CVE-2018-9406 was published Jan 18, 2025

Cross Site Scripting vulnerability in sunnygkp10 Online Exam System master version allows a... Moderate Unreviewed

CVE-2024-57370 was published Jan 17, 2025

In ip6_append_data of ip6_output.c, there is a possible way to achieve code execution due to a... High Unreviewed

CVE-2018-9389 was published Jan 18, 2025

A reachable assertion in the Mobile Management Entity (MME) of Magma versions <= 1.8.0 (fixed in... High Unreviewed

CVE-2023-37024 was published Jan 22, 2025

An uninitialized pointer dereference in the ngap_handle_pdu_session_resource_setup_response... Moderate Unreviewed

CVE-2024-24443 was published Jan 22, 2025

Magma versions <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) are... High Unreviewed

CVE-2023-37029 was published Jan 22, 2025

A reachable assertion in the amf_ue_set_suci function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed

CVE-2024-24427 was published Jan 22, 2025

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component:... Moderate Unreviewed

CVE-2024-21245 was published Jan 21, 2025

A low privileged remote attacker... Moderate Unreviewed

CVE-2024-28135 was published May 14, 2024

SQL Injection vulnerability in ABO.CMS version 5.8, allows remote attackers to execute arbitrary... Critical Unreviewed

CVE-2024-25227 was published Mar 15, 2024

The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress... Moderate Unreviewed

CVE-2024-2841 was published Mar 29, 2024

The Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress plugin for WordPress... Moderate Unreviewed

CVE-2024-2108 was published Mar 29, 2024

An unauthenticated remote attacker can read memory out of bounds due to improper input validation... Moderate Unreviewed

CVE-2024-26000 was published Mar 12, 2024

An unauthenticated remote attacker can write memory out of bounds due to improper input... High Unreviewed

CVE-2024-26001 was published Mar 12, 2024

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-1234 was published Mar 13, 2024

The Download Manager Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2023-6954 was published Mar 13, 2024

The Events Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin... Moderate Unreviewed

CVE-2024-0614 was published Mar 13, 2024

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile &... Moderate Unreviewed

CVE-2024-1806 was published Mar 13, 2024

The Premium Addons PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-2399 was published Mar 15, 2024

An issue in radareorg radare2 v.0.9.7 through v.5.8.6 and fixed in v.5.8.8 allows a local... Moderate Unreviewed

CVE-2024-26475 was published Mar 15, 2024

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile &... Moderate Unreviewed

CVE-2024-1409 was published Mar 13, 2024

Fedora Repository 3.8.x includes a service account (fedoraIntCallUser) with default credentials... High Unreviewed

CVE-2025-23012 was published Jan 23, 2025

Fedora Repository 3.8.1 allows path traversal when extracting uploaded archives ("Zip Slip"). A... High Unreviewed

CVE-2025-23011 was published Jan 23, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

242,286 advisories