Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,044
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

110,703 advisories

Loading
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... Moderate Unreviewed
CVE-2022-44519 was published Dec 19, 2024
IBM InfoSphere Information Server 11.7 could allow a remote attacker to hijack the clicking... Moderate Unreviewed
CVE-2021-29827 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... Moderate Unreviewed
CVE-2022-44516 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... Moderate Unreviewed
CVE-2022-44515 was published Dec 19, 2024
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005... Moderate Unreviewed
CVE-2023-21586 was published Dec 19, 2024
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 is vulnerable to cross-site... Moderate Unreviewed
CVE-2021-20553 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... Moderate Unreviewed
CVE-2022-44517 was published Dec 19, 2024
An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys... Moderate Unreviewed
CVE-2022-40732 was published Dec 19, 2024
An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys... Moderate Unreviewed
CVE-2022-40733 was published Dec 19, 2024
IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, 9.4 CD, IBM MQ Appliance 9.3 LTS, 9.3 CD, 9.4... Moderate Unreviewed
CVE-2024-51470 was published Dec 18, 2024
A vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS)... Moderate Unreviewed
CVE-2024-12686 was published Dec 18, 2024
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 does not properly validate a... Moderate Unreviewed
CVE-2024-47119 was published Dec 18, 2024
IBM Cognos Analytics 11.2.0 through 11.2.4 and 12.0.0 through 12.0.3 could allow a remote... Moderate Unreviewed
CVE-2024-45082 was published Dec 18, 2024
IBM Cognos Analytics 11.2.0 through 11.2.4 and 12.0.0 through 12.0.3 is vulnerable to HTML... Moderate Unreviewed
CVE-2024-41752 was published Dec 18, 2024
IBM Cognos Analytics 11.2.0 through 11.2.4 and 12.0.0 through 12.0.3 is potentially... Moderate Unreviewed
CVE-2024-25042 was published Dec 18, 2024
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9  stores user credentials in... Moderate Unreviewed
CVE-2024-52361 was published Dec 18, 2024
Winmail Server 4.4 is vulnerable to f_user=%22%3E%3Csvg%20onload Cross Site Scripting (XSS). Moderate Unreviewed
CVE-2024-55492 was published Dec 18, 2024
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 could allow a privileged user to... Moderate Unreviewed
CVE-2023-50956 was published Dec 18, 2024
A Cleartext Storage of Sensitive Information vulnerability [CWE-312] in FortiClientWindows 7.4.0... Moderate Unreviewed
CVE-2024-50570 was published Dec 18, 2024
Missing Authorization vulnerability in Web Chunky Order Delivery & Pickup Location Date Time... Moderate Unreviewed
CVE-2024-55997 was published Dec 18, 2024
Missing Authorization vulnerability in Yudiz Solutions Ltd. WP Menu Image allows Exploiting... Moderate Unreviewed
CVE-2024-52485 was published Dec 18, 2024
IBM i 7.4 and 7.5 is vulnerable to an authenticated user gaining elevated privilege to a physical... Moderate Unreviewed
CVE-2024-47104 was published Dec 18, 2024
The Peter’s Custom Anti-Spam plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed
CVE-2024-12554 was published Dec 18, 2024
The Travel Booking WordPress Theme theme for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed
CVE-2024-11926 was published Dec 18, 2024
The Animation Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2024-12340 was published Dec 18, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database