GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
348 advisories
Filter by severity
Ada.cx's Sentry configuration allowed for blind server-side request forgeries (SSRF) through the...
Moderate
Unreviewed
CVE-2024-9410
was published
Oct 4, 2024
An issue in Doccano Open source annotation tools for machine learning practitioners v.1.8.4 and...
Moderate
Unreviewed
CVE-2024-40441
was published
Sep 23, 2024
Possible
External Service Interaction attack
in eDirectory has been discovered in
OpenText™...
Moderate
Unreviewed
CVE-2021-38132
was published
Sep 12, 2024
A Server-Side Request Forgery (SSRF) vulnerability in Terminalfour before 8.3.19 allows...
Moderate
Unreviewed
CVE-2024-22217
was published
Aug 15, 2024
A Server-Side Request Forgery (SSRF) in the getFileFromRepo function of WonderCMS v3.1.3 allows...
Moderate
Unreviewed
CVE-2024-27563
was published
Mar 5, 2024
The CRM platform Twenty version 0.3.0 is vulnerable to SSRF via file upload.
Moderate
Unreviewed
CVE-2024-28435
was published
Mar 25, 2024
XML External Entity (XXE) vulnerability in Terminalfour 8.0.0001 through 8.3.18 and XML JDBC...
Moderate
Unreviewed
CVE-2024-22219
was published
Aug 15, 2024
Server-side request forgery (SSRF) vulnerability exists in a-blog cms Ver.3.1.x series versions...
Moderate
Unreviewed
CVE-2024-30420
was published
May 22, 2024
Skype for Business Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2023-41763
was published
Oct 10, 2023
A vulnerability was found in wanglongcn ltcms 1.0.20. It has been declared as critical. Affected...
Moderate
Unreviewed
CVE-2024-7743
was published
Aug 13, 2024
A vulnerability was found in wanglongcn ltcms 1.0.20. It has been classified as critical....
Moderate
Unreviewed
CVE-2024-7742
was published
Aug 13, 2024
A vulnerability has been found in wanglongcn ltcms 1.0.20 and classified as critical. This...
Moderate
Unreviewed
CVE-2024-7740
was published
Aug 13, 2024
SAP CRM ABAP (Insights
Management) allows an authenticated attacker to enumerate HTTP endpoints...
Moderate
Unreviewed
CVE-2024-41737
was published
Aug 13, 2024
Apache XML Security for C++ through 2.0.4 implements the XML Signature Syntax and Processing ...
Moderate
Unreviewed
CVE-2024-34580
was published
Jun 26, 2024
A Server-Side Request Forgery (SSRF) in pictureproxy.php of ChatGPT commit f9f4bbc allows...
Moderate
Unreviewed
CVE-2024-27564
was published
Mar 5, 2024
Server Side Request Forgery (SSRF) vulnerability in hcengineering Huly Platform v.0.6.202 allows...
Moderate
Unreviewed
CVE-2024-27707
was published
Mar 7, 2024
Automation Anywhere Automation 360 v21-v32 is vulnerable to Server-Side Request Forgery in a web...
Moderate
Unreviewed
CVE-2024-6922
was published
Jul 26, 2024
Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot allows...
Moderate
Unreviewed
CVE-2024-38791
was published
Aug 1, 2024
The Remote Content Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in...
Moderate
Unreviewed
CVE-2024-2090
was published
Aug 1, 2024
A vulnerability has been found in YouDianCMS 7 and classified as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-7330
was published
Aug 1, 2024
The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow...
Moderate
Unreviewed
CVE-2016-3718
was published
May 14, 2022
Server-Side Request Forgery (SSRF) vulnerability in Bernhard Kux JSON Content Importer.This issue...
Moderate
Unreviewed
CVE-2024-38723
was published
Jul 22, 2024
Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor.This...
Moderate
Unreviewed
CVE-2024-38730
was published
Jul 22, 2024
Server-Side Request Forgery (SSRF) vulnerability in WappPress Team WappPress.This issue affects...
Moderate
Unreviewed
CVE-2024-38758
was published
Jul 20, 2024
The TablePress – Tables in WordPress made easy plugin for WordPress is vulnerable to Server-Side...
Moderate
Unreviewed
CVE-2024-4354
was published
Jun 7, 2024
ProTip!
Advisories are also available from the
GraphQL API