Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,049 advisories

Loading
The file upload functionality of Ai3 QbiBot does not properly restrict types of uploaded files,... High Unreviewed
CVE-2024-3778 was published Apr 15, 2024
Unrestricted file upload vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). This... High Unreviewed
CVE-2024-3705 was published Apr 12, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Moove Agency Import XML and RSS... High Unreviewed
CVE-2024-31292 was published Apr 7, 2024
projeqtor up to 11.2.0 was discovered to contain a remote code execution (RCE) vulnerability via... High Unreviewed
CVE-2024-29387 was published Apr 4, 2024
File Upload vulnerability in lepton v.7.1.0 allows a remote authenticated attackers to execute... High Unreviewed
CVE-2024-29514 was published Apr 2, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Techeshta Layouts for Elementor... High Unreviewed
CVE-2024-30533 was published Mar 31, 2024
ZITADEL's Improper Content-Type Validation Leads to Account Takeover via Stored XSS + CSP Bypass High
CVE-2024-29891 was published for github.com/zitadel/zitadel (Go) Mar 28, 2024
amit-laish fforootd
livio-a adlerhurst
A vulnerability exists in the stb-language file handling that affects the RTU500 series product... High Unreviewed
CVE-2024-1531 was published Mar 27, 2024
A vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been declared as... High Unreviewed
CVE-2024-2930 was published Mar 27, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in ThemeFusion Avada.This issue... High Unreviewed
CVE-2023-39307 was published Mar 26, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Trustindex.Io Widgets for Google... High Unreviewed
CVE-2023-48275 was published Mar 26, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in mndpsingh287 Theme Editor.This... High Unreviewed
CVE-2023-6091 was published Mar 26, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in OnTheGoSystems Types.This issue... High Unreviewed
CVE-2023-27440 was published Mar 26, 2024
File Upload vulnerability in lepton v.7.1.0 allows a remote authenticated attackers to execute... High Unreviewed
CVE-2024-29515 was published Mar 25, 2024
phpMyFAQ's File Upload Bypass at Category Image Leads to RCE High
CVE-2024-28105 was published for phpmyfaq/phpmyfaq (Composer) Mar 25, 2024
kevinnivekkevin
Unrestricted Upload of File with Dangerous Type vulnerability in Gesundheit Bewegt GmbH Zippy... High Unreviewed
CVE-2024-27964 was published Mar 21, 2024
Arbitrary file upload vulnerability in GeoServer's REST Coverage Store API High
CVE-2023-51444 was published for org.geoserver:gs-platform (Maven) Mar 20, 2024
sikeoka
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the load_obj... High Unreviewed
CVE-2024-28425 was published Mar 14, 2024
A path traversal vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in edge-app... High Unreviewed
CVE-2024-0800 was published Mar 13, 2024
File Upload vulnerability in Byzro Network Smart s42 Management Platform v.S42 allows a local... High Unreviewed
CVE-2024-27733 was published Mar 7, 2024
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 allows the attacker... High Unreviewed
CVE-2023-25921 was published Feb 29, 2024
An Unrestricted File Upload vulnerability in CodeAstro Membership Management System in PHP v.1.0... High Unreviewed
CVE-2024-25869 was published Feb 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in bPlugins LLC Icons Font Loader... High Unreviewed
CVE-2024-24714 was published Feb 26, 2024
A vulnerability was discovered in Veritas eDiscovery Platform before 10.2.5. The application... High Unreviewed
CVE-2024-27283 was published Feb 22, 2024
File Upload vulnerability in pmb/camera_upload.php in PMB 7.4.7 and earlier allows attackers to... High Unreviewed
CVE-2023-52154 was published Feb 22, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database