GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,335
Composer 4,133
Erlang 29
GitHub Actions 19
Go 1,939
Maven 5,134
npm 3,677
NuGet 643
pip 3,295
Pub 11
RubyGems 877
Rust 830
Swift 35

Unreviewed advisories

All unreviewed 230,779

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

859 advisories

Filter by severity

Sort by

Least recently updated

The WP Easy Post Types plugin for WordPress is vulnerable to PHP Object Injection in versions up... High Unreviewed

CVE-2024-10079 was published Oct 18, 2024

Deserialization of Untrusted Data vulnerability in Scott Olson My Reading Library allows Object... Critical Unreviewed

CVE-2024-49318 was published Oct 17, 2024

Deserialization of Untrusted Data vulnerability in Gabriele Valenti Telecash Ricaricaweb allows... Critical Unreviewed

CVE-2024-48030 was published Oct 16, 2024

Deserialization of Untrusted Data vulnerability in TAKETIN TAKETIN To WP Membership allows Object... High Unreviewed

CVE-2024-49226 was published Oct 16, 2024

Deserialization of Untrusted Data vulnerability in Al Imran Akash Recently allows Object... Critical Unreviewed

CVE-2024-49218 was published Oct 16, 2024

Deserialization of Untrusted Data vulnerability in Innovaweb Sp. Z o.O. Free Stock Photos Foter... High Unreviewed

CVE-2024-49227 was published Oct 16, 2024

Deserialization of Untrusted Data vulnerability in Grayson Robbins Disc Golf Manager allows... Critical Unreviewed

CVE-2024-48026 was published Oct 16, 2024

Deserialization of Untrusted Data vulnerability in Boyan Raichev IP Loc8 allows Object Injection... Critical Unreviewed

CVE-2024-48028 was published Oct 16, 2024

The NinjaFirewall plugin for WordPress is vulnerable to Authenticated PHAR Deserialization in... Moderate Unreviewed

CVE-2021-4451 was published Oct 16, 2024

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP... Critical Unreviewed

CVE-2024-9634 was published Oct 16, 2024

A Potential DOS Vulnerability exists in CERT VINCE software prior to version 3.0.8. An... Moderate Unreviewed

CVE-2024-9953 was published Oct 15, 2024

In Splunk Enterprise for Windows versions below 9.2.3 and 9.1.6, a low-privileged user that does... High Unreviewed

CVE-2024-45733 was published Oct 14, 2024

A vulnerability, which was classified as critical, was found in HuangDou UTCMS V9. This affects... Moderate Unreviewed

CVE-2024-9917 was published Oct 13, 2024

Deserialization of Untrusted Data vulnerability in Elie Burstein, Baptiste Gourdin Talkback... Critical Unreviewed

CVE-2024-48033 was published Oct 11, 2024

Deserialization of untrusted data in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before... Low Unreviewed

CVE-2023-26592 was published Oct 10, 2024

Deserialization of Untrusted Data vulnerability in Eyecix JobSearch allows Object Injection.This... Critical Unreviewed

CVE-2024-47636 was published Oct 10, 2024

CWE-502: Deserialization of Untrusted Data vulnerability exists that could allow code to be... High Unreviewed

CVE-2024-9005 was published Oct 8, 2024

The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-9314 was published Oct 5, 2024

The Unseen Blog theme for WordPress is vulnerable to PHP Object Injection in all versions up to,... High Unreviewed

CVE-2024-7432 was published Oct 1, 2024

The Empowerment theme for WordPress is vulnerable to PHP Object Injection in all versions up to,... High Unreviewed

CVE-2024-7433 was published Oct 1, 2024

The UltraPress theme for WordPress is vulnerable to PHP Object Injection in all versions up to,... High Unreviewed

CVE-2024-7434 was published Oct 1, 2024

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP... Critical Unreviewed

CVE-2024-8353 was published Sep 28, 2024

The Product Enquiry for WooCommerce, WooCommerce product catalog plugin for WordPress is... High Unreviewed

CVE-2024-8922 was published Sep 27, 2024

IBM ManageIQ could allow a remote authenticated attacker to execute arbitrary commands on the... High Unreviewed

CVE-2024-43191 was published Sep 26, 2024

In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a code execution attack is... High Unreviewed

CVE-2024-8316 was published Sep 25, 2024

Previous 1 2 3 4 5 … 34 35 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

859 advisories