GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,089 advisories
Filter by severity
IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20...
Moderate
Unreviewed
CVE-2024-31897
was published
Jul 8, 2024
Volmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via...
Critical
Unreviewed
CVE-2024-29319
was published
Jul 5, 2024
SAP CRM (WebClient UI Framework) allows an
authenticated attacker to enumerate accessible HTTP...
Moderate
Unreviewed
CVE-2024-39598
was published
Jul 9, 2024
SAP Transportation Management (Collaboration
Portal) allows an attacker with non-administrative...
Moderate
Unreviewed
CVE-2024-37171
was published
Jul 9, 2024
WebFlow Services of SAP Business Workflow allows
an authenticated attacker to enumerate...
Moderate
Unreviewed
CVE-2024-34689
was published
Jul 9, 2024
Microsoft SharePoint Server Information Disclosure Vulnerability
High
Unreviewed
CVE-2024-32987
was published
Jul 9, 2024
SSRF in Apache HTTP Server on Windows allows to potentially leak NTML hashes to a malicious...
High
Unreviewed
CVE-2024-38472
was published
Jul 1, 2024
PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery (SSRF) via the...
High
Unreviewed
CVE-2024-40543
was published
Jul 12, 2024
PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery (SSRF) via the...
High
Unreviewed
CVE-2024-40544
was published
Jul 12, 2024
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 is vulnerable to server-side request...
Moderate
Unreviewed
CVE-2024-39739
was published
Jul 15, 2024
The TablePress – Tables in WordPress made easy plugin for WordPress is vulnerable to Server-Side...
Moderate
Unreviewed
CVE-2024-4354
was published
Jun 7, 2024
Server-Side Request Forgery (SSRF) vulnerability in WappPress Team WappPress.This issue affects...
Moderate
Unreviewed
CVE-2024-38758
was published
Jul 20, 2024
Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor.This...
Moderate
Unreviewed
CVE-2024-38730
was published
Jul 22, 2024
Server-Side Request Forgery (SSRF) vulnerability in Seraphinite Solutions Seraphinite Post .DOCX...
High
Unreviewed
CVE-2024-38728
was published
Jul 22, 2024
Server-Side Request Forgery (SSRF) vulnerability in Berqier Ltd BerqWP.This issue affects BerqWP:...
High
Unreviewed
CVE-2024-37942
was published
Jul 22, 2024
Server-Side Request Forgery (SSRF) vulnerability in Bernhard Kux JSON Content Importer.This issue...
Moderate
Unreviewed
CVE-2024-38723
was published
Jul 22, 2024
Limited Server-Side Request Forgery (SSRF) in agent-receiver in Tribe29's Checkmk <= 2.1.0p11...
High
Unreviewed
CVE-2022-48321
was published
Feb 20, 2023
Server-Side Request Forgery in langchain-community.retrievers.web_research.WebResearchRetriever
Moderate
CVE-2024-3095
was published
for
langchain-community
(pip)
Jun 6, 2024
The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow...
Moderate
Unreviewed
CVE-2016-3718
was published
May 14, 2022
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen...
Critical
Unreviewed
CVE-2021-40438
was published
May 24, 2022
Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021...
Critical
Unreviewed
CVE-2021-34473
was published
May 24, 2022
GitHub Security Lab (GHSL) Vulnerability Report: Arbitary write GHSL-2023-182
Critical
CVE-2023-50731
was published
for
mindsdb
(pip)
Dec 15, 2023
A vulnerability has been found in YouDianCMS 7 and classified as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-7330
was published
Aug 1, 2024
The Remote Content Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in...
Moderate
Unreviewed
CVE-2024-2090
was published
Aug 1, 2024
An issue in Ladder v.0.0.1 thru v.0.0.21 allows a remote attacker to obtain sensitive information...
High
Unreviewed
CVE-2024-27620
was published
Apr 6, 2024
ProTip!
Advisories are also available from the
GraphQL API