Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,360
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,793
NuGet
683
pip
3,471
Pub
12
RubyGems
894
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+

930 advisories

Loading
** DISPUTED ** PHP remote file inclusion vulnerability in init.php in Jens Tkotz myIpacNG-stats ... Moderate Unreviewed
CVE-2007-5165 was published May 1, 2022
** UNSUPPORTED WHEN ASSIGNED ** D-Link DIR-610 devices allow Remote Command Execution via the cmd... Moderate Unreviewed
CVE-2020-9377 was published May 24, 2022
A vulnerability, which was classified as critical, was found in ZhiCms 4.0. Affected is the... Moderate Unreviewed
CVE-2024-2016 was published Mar 21, 2024
** DISPUTED ** PHP remote file inclusion vulnerability in include/plugin/block.t.php in Peter... Moderate Unreviewed
CVE-2007-5114 was published May 1, 2022
** DISPUTED ** PHP remote file inclusion vulnerability in sample.php in YaPiG 0.95b allows... Moderate Unreviewed
CVE-2007-4951 was published May 1, 2022
** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in php(Reactor) 1.2.7pl1 allow... Moderate Unreviewed
CVE-2007-4949 was published May 1, 2022
** DISPUTED ** PHP remote file inclusion vulnerability in htmls/forum/includes/topic_review.php... Moderate Unreviewed
CVE-2007-5164 was published May 1, 2022
** DISPUTED ** PHP remote file inclusion vulnerability in form/db_form/employee.php in PHPortal... Moderate Unreviewed
CVE-2007-4950 was published May 1, 2022
** DISPUTED ** PHP remote file inclusion vulnerability in includes/functions/layout.php in Nexty... Moderate Unreviewed
CVE-2007-5163 was published May 1, 2022
** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in FrontAccounting (FA) 1.12... Moderate Unreviewed
CVE-2007-5148 was published May 1, 2022
** DISPUTED ** submitticket.php in WHMCompleteSolution (WHMCS) 5.03 allows remote attackers to... Moderate Unreviewed
CVE-2012-0693 was published May 17, 2022
Dolibarr ERP CRM Code Injection vulnerability during installation Moderate
CVE-2024-29477 was published for dolibarr/dolibarr (Composer) Apr 3, 2024
Code injection vulnerability in Palo Alto Networks Traps 5.0.5 and earlier may allow an... Moderate Unreviewed
CVE-2019-1577 was published May 24, 2022
cPanel before 70.0.23 allows demo accounts to execute code via the Landing Page (SEC-405). Moderate Unreviewed
CVE-2018-20931 was published May 24, 2022
cPanel before 62.0.17 allows demo accounts to execute code via the Htaccess::setphppreference API... Moderate Unreviewed
CVE-2017-18468 was published May 24, 2022
Code Injection vulnerability in EPSetup.exe in McAfee Endpoint Security (ENS) Prior to 10.6.1... Moderate Unreviewed
CVE-2019-3652 was published May 24, 2022
An issue discovered in mccms 2.6.1 allows remote attackers to cause a denial of service via... Moderate Unreviewed
CVE-2023-26782 was published Apr 28, 2023
An issue has been discovered in GitLab CE/EE affecting all versions from 8.6 before 15.9.6, all... Moderate Unreviewed
CVE-2023-1178 was published May 4, 2023
Code injection vulnerability exists in Chatwork Desktop Application (Mac) 2.6.43 and earlier. If... Moderate Unreviewed
CVE-2023-32546 was published Jun 13, 2023
An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions... Moderate Unreviewed
CVE-2023-3401 was published Aug 2, 2023
SAP PowerDesigner Client - version 16.7, allows an unauthenticated attacker to inject VBScript... Moderate Unreviewed
CVE-2023-40621 was published Sep 13, 2023
The Allow PHP in Posts and Pages plugin for WordPress is vulnerable to Remote Code Execution in... Moderate Unreviewed
CVE-2023-4994 was published Sep 16, 2023
Vulnerabilities exist in the BIOS implementation of Aruba 9200 and 9000 Series Controllers and... Moderate Unreviewed
CVE-2023-38484 was published Sep 6, 2023
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2024-29991 was published Apr 19, 2024
PHP file inclusion via insert tags Moderate
CVE-2021-37626 was published for contao/contao (Composer) Aug 23, 2021
ausi
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database