GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,605
Composer 4,714
Erlang 34
GitHub Actions 28
Go 2,297
Maven 5,575
npm 3,942
NuGet 708
pip 3,711
Pub 12
RubyGems 920
Rust 959
Swift 38

Unreviewed advisories

All unreviewed 256,622

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

338 advisories

Filter by severity

Sort by

Least recently updated

The Gutenberg Blocks by Kadence Blocks – Page Builder Features plugin for WordPress is vulnerable... High Unreviewed

CVE-2023-6964 was published Apr 9, 2024

Server-Side Request Forgery (SSRF) vulnerability in RapidLoad RapidLoad Power-Up for Autoptimize... High Unreviewed

CVE-2024-31288 was published Apr 7, 2024

An issue in Ladder v.0.0.1 thru v.0.0.21 allows a remote attacker to obtain sensitive information... High Unreviewed

CVE-2024-27620 was published Apr 6, 2024

The CloudStack management server and secondary storage VM could be tricked into making requests... High Unreviewed

CVE-2024-29007 was published Apr 4, 2024

Server Side Request Forgery (SSRF) vulnerability in 71cms v1.0.0, allows remote unauthenticated... High Unreviewed

CVE-2024-25187 was published Apr 2, 2024

SysAid before version 23.2.14 b18 - CWE-918: Server-Side Request Forgery (SSRF) may allow... High Unreviewed

CVE-2024-27775 was published Mar 28, 2024

Server-Side Request Forgery (SSRF) vulnerability in Kadence WP Gutenberg Blocks by Kadence Blocks... High Unreviewed

CVE-2024-23500 was published Mar 28, 2024

Server-Side Request Forgery (SSRF) vulnerability in Brainstorm Force Starter Templates —... High Unreviewed

CVE-2023-34370 was published Mar 28, 2024

Server-Side Request Forgery (SSRF) vulnerability in ThemeFusion Avada.This issue affects Avada:... High Unreviewed

CVE-2023-39313 was published Mar 28, 2024

Server-Side Request Forgery (SSRF) vulnerability in Brainstorm Force Spectra.This issue affects... High Unreviewed

CVE-2023-36679 was published Mar 28, 2024

An issue was discovered in RWS WorldServer before 11.7.3. An authenticated, remote attacker can... High Unreviewed

CVE-2022-34269 was published Feb 29, 2024

Tencent Blueking CMDB v3.2.x to v3.9.x was discovered to contain a Server-Side Request Forgery ... High Unreviewed

CVE-2024-22873 was published Feb 26, 2024

Pega Platform versions 8.2.1 to Infinity 23.1.0 are affected by an Generated PDF issue that could... High Unreviewed

CVE-2023-50165 was published Jan 31, 2024

A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x,... High Unreviewed

CVE-2024-21893 was published Jan 31, 2024

A vulnerability classified as critical was found in 60IndexPage up to 1.8.5. This vulnerability... High Unreviewed

CVE-2024-0946 was published Jan 26, 2024

A vulnerability classified as critical has been found in 60IndexPage up to 1.8.5. This affects an... High Unreviewed

CVE-2024-0945 was published Jan 26, 2024

A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central... High Unreviewed

CVE-2023-52331 was published Jan 23, 2024

Server-Side Request Forgery (SSRF) vulnerability in Montonio Montonio for WooCommerce, Wpopal... High Unreviewed

CVE-2022-40700 was published Jan 19, 2024

The JSM file_get_contents() Shortcode WordPress plugin before 2.7.1 does not validate one of its... High Unreviewed

CVE-2023-6991 was published Jan 15, 2024

A vulnerability, which was classified as critical, has been found in HaoKeKeJi YiQiNiu up to 3.1.... High Unreviewed

CVE-2024-0510 was published Jan 14, 2024

An issue in rymcu forest v.0.02 allows a remote attacker to obtain sensitive information via... High Unreviewed

CVE-2023-51804 was published Jan 13, 2024

Blind Server-Side Request Forgery (SSRF) vulnerability in karlomikus Bar Assistant before version... High Unreviewed

CVE-2023-49471 was published Jan 10, 2024

Arbitrary file properties reading vulnerability in Apache Software Foundation Apache OFBiz when... High Unreviewed

CVE-2023-50968 was published Dec 26, 2023

An unauthenticated attacked could send a specifically crafted web request causing a Server-Side... High Unreviewed

CVE-2023-46262 was published Dec 19, 2023

A vulnerability was found in kalcaddle kodbox up to 1.48. It has been rated as critical. Affected... High Unreviewed

CVE-2023-6849 was published Dec 16, 2023

Previous 1 2 3 4 5 6 7 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

338 advisories