Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+

4,487 advisories

In mintplex-labs/anything-llm, a vulnerability exists in the thread update process that allows... High Unreviewed
CVE-2024-3150 was published Jun 6, 2024
Local file inclusion in gradio High
CVE-2024-4941 was published for gradio (pip) Jun 6, 2024
mintplex-labs/anything-llm is vulnerable to multiple security issues due to improper input... High Unreviewed
CVE-2024-3152 was published Jun 6, 2024
MLFlow improper input validation High
CVE-2024-37061 was published for mlflow (pip) Jun 4, 2024
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6... High Unreviewed
CVE-2024-23668 was published Jun 3, 2024
MileSight DeviceHub - CWE-20 Improper Input Validation may allow Denial of Service High Unreviewed
CVE-2024-36390 was published Jun 2, 2024
Moodle Improper Input Validation High
CVE-2024-33999 was published for moodle/moodle (Composer) May 31, 2024
TYPO3 Arbitrary Shell Execution in Swiftmailer library High
GHSA-45xg-4w5x-j429 was published for typo3/cms (Composer) May 30, 2024
silverstripe/framework has possible denial of service attack vector when flushing High
GHSA-cwgq-83w5-8jfq was published for silverstripe/framework (Composer) May 28, 2024
In mintplex-labs/anything-llm, a vulnerability exists due to improper input validation in the... High Unreviewed
CVE-2024-4287 was published May 20, 2024
A potential vulnerability has been identified for OpenText Operations Bridge Reporter. The... High Unreviewed
CVE-2021-22508 was published May 17, 2024
Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious... High Unreviewed
CVE-2024-22429 was published May 17, 2024
Improper input validation in UserAuthenticationSmm driver in UEFI firmware for some Intel(R)... High Unreviewed
CVE-2024-23487 was published May 16, 2024
Improper input validation in PfrSmiUpdateFw driver in UEFI firmware for some Intel(R) Server... High Unreviewed
CVE-2024-24981 was published May 16, 2024
Improper input validation in PlatformVariableInitDxe driver in UEFI firmware for some Intel(R)... High Unreviewed
CVE-2024-22095 was published May 16, 2024
Improper input validation in PprRequestLog module in UEFI firmware for some Intel(R) Server... High Unreviewed
CVE-2024-22382 was published May 16, 2024
Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may... High Unreviewed
CVE-2023-45745 was published May 16, 2024
Improper input validation for some some Intel(R) PROSet/Wireless WiFi software for Windows before... High Unreviewed
CVE-2023-38654 was published May 16, 2024
Improper input validation in some Intel(R) BIOS Guard firmware may allow a privileged user to... High Unreviewed
CVE-2023-28402 was published May 16, 2024
A Local File Inclusion (LFI) vulnerability exists in the gaizhenbiao/chuanhuchatgpt application,... High Unreviewed
CVE-2024-4321 was published May 16, 2024
Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can... High Unreviewed
CVE-2024-3968 was published May 15, 2024
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Input... High Unreviewed
CVE-2024-34098 was published May 15, 2024
The Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains an Improper Input... High Unreviewed
CVE-2024-3676 was published May 14, 2024
Windows MSHTML Platform Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-30040 was published May 14, 2024
Improper validation of certain metadata input may result in the server not correctly serialising... High Unreviewed
CVE-2024-3372 was published May 14, 2024
ProTip! Advisories are also available from the GraphQL API