Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

1,086 advisories

Loading
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows... High Unreviewed
CVE-2024-42676 was published Aug 15, 2024
The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2024-4389 was published Aug 14, 2024
The Media Library Assistant plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6823 was published Aug 13, 2024
ThreatSonar Anti-Ransomware from TeamT5 does not properly validate the content of uploaded files.... High Unreviewed
CVE-2024-7694 was published Aug 12, 2024
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager... High Unreviewed
CVE-2024-41913 was published Aug 6, 2024
The Blox Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing... High Unreviewed
CVE-2024-6315 was published Aug 6, 2024
The CRM Perks Forms plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-7484 was published Aug 6, 2024
The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6431 was published Jul 27, 2024
An arbitrary file upload vulnerability in Webkul Qloapps v1.6.0.0 allows attackers to execute... High Unreviewed
CVE-2024-40318 was published Jul 25, 2024
The Social Auto Poster plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-6756 was published Jul 24, 2024
The Redux Framework plugin for WordPress is vulnerable to unauthenticated JSON file uploads due... High Unreviewed
CVE-2024-6828 was published Jul 23, 2024
Automad arbitrary file upload vulnerability High
CVE-2024-40400 was published for automad/automad (Composer) Jul 19, 2024
marcantondahmen
The Brizy – Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-3242 was published Jul 18, 2024
Apache StreamPipes has potential remote code execution (RCE) via file upload High
CVE-2024-31411 was published for org.apache.streampipes:streampipes-parent (Maven) Jul 17, 2024
The Insert or Embed Articulate Content into WordPress plugin before 4.3000000024 does not prevent... High Unreviewed
CVE-2024-5630 was published Jul 15, 2024
An arbitrary file upload vulnerability in the component /admin/cmsTemplate/savePlaceMetaData of... High Unreviewed
CVE-2024-40550 was published Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsTemplate/save of PublicCMS v4.0... High Unreviewed
CVE-2024-40548 was published Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsTemplate/doUpload of PublicCMS... High Unreviewed
CVE-2024-40551 was published Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsWebFile/doUpload of PublicCMS... High Unreviewed
CVE-2024-40545 was published Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsWebFile/save of PublicCMS v4.0... High Unreviewed
CVE-2024-40546 was published Jul 12, 2024
An arbitrary file upload vulnerability in the component /admin/cmsTemplate/savePlace of PublicCMS... High Unreviewed
CVE-2024-40549 was published Jul 12, 2024
An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an... High Unreviewed
CVE-2024-5911 was published Jul 10, 2024
The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to arbitrary file uploads... High Unreviewed
CVE-2023-7061 was published Jul 10, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).... High Unreviewed
CVE-2024-39865 was published Jul 9, 2024
The Bit Form plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... High Unreviewed
CVE-2024-6123 was published Jul 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database