GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,656
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
90,466 advisories
Filter by severity
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_find() function at...
High
Unreviewed
CVE-2024-46264
was published
Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_chunk() function at...
High
Unreviewed
CVE-2024-46276
was published
Oct 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: dpaa: Pad packets to...
High
Unreviewed
CVE-2024-46854
was published
Sep 27, 2024
CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and...
High
Unreviewed
CVE-2024-47850
was published
Oct 4, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_stored() function at...
High
Unreviewed
CVE-2024-46274
was published
Oct 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Check...
High
Unreviewed
CVE-2024-46813
was published
Sep 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/pm: Fix negative...
High
Unreviewed
CVE-2024-46821
was published
Sep 27, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_make32() function at...
High
Unreviewed
CVE-2024-46261
was published
Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_load_png_mem()...
High
Unreviewed
CVE-2024-46258
was published
Oct 1, 2024
cute_png v1.05 was discovered to contain a stack overflow via the cp_dynamic() function at...
High
Unreviewed
CVE-2024-46263
was published
Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_block() function at...
High
Unreviewed
CVE-2024-46267
was published
Oct 1, 2024
A security agent link following vulnerability in Trend Micro Apex One could allow a local...
High
Unreviewed
CVE-2024-36305
was published
Jun 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-8607
was published
Sep 27, 2024
The goTenna Pro series allows unauthenticated attackers to remotely update the local public keys...
High
Unreviewed
CVE-2024-47130
was published
Sep 26, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Check...
High
Unreviewed
CVE-2024-46818
was published
Sep 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
spi: nxp-fspi: fix the KASAN...
High
Unreviewed
CVE-2024-46853
was published
Sep 27, 2024
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain...
High
Unreviewed
CVE-2024-40510
was published
Sep 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Check...
High
Unreviewed
CVE-2024-46814
was published
Sep 27, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_unfilter() function at...
High
Unreviewed
CVE-2024-46259
was published
Oct 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Add array...
High
Unreviewed
CVE-2024-46804
was published
Sep 27, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2024-36303
was published
Jun 11, 2024
There is a local file inclusion vulnerability in Esri Portal for ArcGIS 11.2. 11.1, 11.0 and 10.9...
High
Unreviewed
CVE-2024-38040
was published
Oct 4, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
High
Unreviewed
CVE-2024-8608
was published
Sep 27, 2024
Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows...
High
Unreviewed
CVE-2024-8609
was published
Sep 27, 2024
The AI ChatBot with ChatGPT and Content Generator by AYS WordPress plugin before 2.1.0 discloses...
High
Unreviewed
CVE-2024-7713
was published
Sep 27, 2024
ProTip!
Advisories are also available from the
GraphQL API