Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

974 advisories

Loading
In WhatsUp Gold versions released before 2023.1.3, an authenticated user with certain... High Unreviewed
CVE-2024-5008 was published Jun 25, 2024
An authenticated user can upload arbitrary files in the upload function for collection preview... High Unreviewed
CVE-2024-28147 was published Jun 20, 2024
The AliExpress Dropshipping with AliNext Lite plugin for WordPress is vulnerable to arbitrary... High Unreviewed
CVE-2024-2381 was published Jun 19, 2024
The upload functionality of ASUS Download Master does not properly filter user input. Remote... High Unreviewed
CVE-2024-31161 was published Jun 14, 2024
Verint - CWE-434: Unrestricted Upload of File with Dangerous Type High Unreviewed
CVE-2024-36396 was published Jun 13, 2024
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an... High Unreviewed
CVE-2024-34110 was published Jun 13, 2024
An arbitrary file upload vulnerability in Monstra CMS v3.0.4 allows attackers to execute... High Unreviewed
CVE-2024-36774 was published Jun 7, 2024
An unrestricted file upload vulnerability in web component of Ivanti Avalanche before 6.4.x... High Unreviewed
CVE-2024-29848 was published May 31, 2024
An unrestricted file upload vulnerability in web component of Ivanti Neurons for ITSM allows a... High Unreviewed
CVE-2024-22060 was published May 31, 2024
A vulnerability classified as critical has been found in SourceCodester Student Management System... High Unreviewed
CVE-2024-5047 was published May 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in 8theme XStore Core.This issue... High Unreviewed
CVE-2024-33556 was published May 17, 2024
A vulnerability was found in SourceCodester Online Discussion Forum Site 1.0. It has been rated... High Unreviewed
CVE-2024-4920 was published May 16, 2024
Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can... High Unreviewed
CVE-2024-3483 was published May 15, 2024
BMC Track-It! Unrestricted File Upload Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2021-35002 was published May 8, 2024
Triangle MicroWorks SCADA Data Gateway Trusted Certification Unrestricted Upload of File Remote... High Unreviewed
CVE-2023-39463 was published May 3, 2024
NETGEAR ProSAFE Network Management System UpLoadServlet Unrestricted File Upload Remote Code... High Unreviewed
CVE-2023-38098 was published May 3, 2024
NETGEAR ProSAFE Network Management System MFileUploadController Unrestricted File Upload Remote... High Unreviewed
CVE-2023-38095 was published May 3, 2024
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to limited file... High Unreviewed
CVE-2024-1567 was published May 2, 2024
ReCrystallize Server 5.10.0.0 allows administrators to upload files to the server. The file... High Unreviewed
CVE-2024-28269 was published Apr 30, 2024
File Upload vulnerability in CubeCart before 6.5.5 allows an authenticated user to execute... High Unreviewed
CVE-2024-33438 was published Apr 29, 2024
An Unrestricted File-upload vulnerability in web component of Ivanti Avalanche before 6.4.3... High Unreviewed
CVE-2024-23534 was published Apr 19, 2024
File Upload vulnerability in Shibang Communications Co., Ltd. IP network intercom broadcasting... High Unreviewed
CVE-2024-31680 was published Apr 17, 2024
Phpgurukul Tourism Management System v2.0 is vulnerable to Unrestricted Upload of File with... High Unreviewed
CVE-2024-32254 was published Apr 16, 2024
Phpgurukul Tourism Management System v2.0 is vulnerable to Unrestricted Upload of File with... High Unreviewed
CVE-2024-32256 was published Apr 16, 2024
An arbitrary file upload vulnerability in the Add Category function of Codoforum v4.9 allows... High Unreviewed
CVE-2020-22539 was published Apr 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database