GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,049 advisories
Filter by severity
The file upload functionality of Ai3 QbiBot does not properly restrict types of uploaded files,...
High
Unreviewed
CVE-2024-3778
was published
Apr 15, 2024
Unrestricted file upload vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). This...
High
Unreviewed
CVE-2024-3705
was published
Apr 12, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Moove Agency Import XML and RSS...
High
Unreviewed
CVE-2024-31292
was published
Apr 7, 2024
projeqtor up to 11.2.0 was discovered to contain a remote code execution (RCE) vulnerability via...
High
Unreviewed
CVE-2024-29387
was published
Apr 4, 2024
File Upload vulnerability in lepton v.7.1.0 allows a remote authenticated attackers to execute...
High
Unreviewed
CVE-2024-29514
was published
Apr 2, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Techeshta Layouts for Elementor...
High
Unreviewed
CVE-2024-30533
was published
Mar 31, 2024
ZITADEL's Improper Content-Type Validation Leads to Account Takeover via Stored XSS + CSP Bypass
High
CVE-2024-29891
was published
for
github.com/zitadel/zitadel
(Go)
Mar 28, 2024
A vulnerability exists in the stb-language file handling that affects the RTU500 series product...
High
Unreviewed
CVE-2024-1531
was published
Mar 27, 2024
A vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been declared as...
High
Unreviewed
CVE-2024-2930
was published
Mar 27, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in ThemeFusion Avada.This issue...
High
Unreviewed
CVE-2023-39307
was published
Mar 26, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Trustindex.Io Widgets for Google...
High
Unreviewed
CVE-2023-48275
was published
Mar 26, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in mndpsingh287 Theme Editor.This...
High
Unreviewed
CVE-2023-6091
was published
Mar 26, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in OnTheGoSystems Types.This issue...
High
Unreviewed
CVE-2023-27440
was published
Mar 26, 2024
File Upload vulnerability in lepton v.7.1.0 allows a remote authenticated attackers to execute...
High
Unreviewed
CVE-2024-29515
was published
Mar 25, 2024
phpMyFAQ's File Upload Bypass at Category Image Leads to RCE
High
CVE-2024-28105
was published
for
phpmyfaq/phpmyfaq
(Composer)
Mar 25, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Gesundheit Bewegt GmbH Zippy...
High
Unreviewed
CVE-2024-27964
was published
Mar 21, 2024
Arbitrary file upload vulnerability in GeoServer's REST Coverage Store API
High
CVE-2023-51444
was published
for
org.geoserver:gs-platform
(Maven)
Mar 20, 2024
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the load_obj...
High
Unreviewed
CVE-2024-28425
was published
Mar 14, 2024
A path traversal vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in edge-app...
High
Unreviewed
CVE-2024-0800
was published
Mar 13, 2024
File Upload vulnerability in Byzro Network Smart s42 Management Platform v.S42 allows a local...
High
Unreviewed
CVE-2024-27733
was published
Mar 7, 2024
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 allows the attacker...
High
Unreviewed
CVE-2023-25921
was published
Feb 29, 2024
An Unrestricted File Upload vulnerability in CodeAstro Membership Management System in PHP v.1.0...
High
Unreviewed
CVE-2024-25869
was published
Feb 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in bPlugins LLC Icons Font Loader...
High
Unreviewed
CVE-2024-24714
was published
Feb 26, 2024
A vulnerability was discovered in Veritas eDiscovery Platform before 10.2.5. The application...
High
Unreviewed
CVE-2024-27283
was published
Feb 22, 2024
File Upload vulnerability in pmb/camera_upload.php in PMB 7.4.7 and earlier allows attackers to...
High
Unreviewed
CVE-2023-52154
was published
Feb 22, 2024
ProTip!
Advisories are also available from the
GraphQL API