Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,342
Erlang
31
GitHub Actions
22
Go
2,106
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
885
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

400 advisories

Loading
Server-Side Request Forgery (SSRF) vulnerability in Really Simple Plugins Really Simple SSL.This... Moderate Unreviewed
CVE-2024-31229 was published Apr 18, 2024
The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator... Moderate Unreviewed
CVE-2023-6805 was published Apr 17, 2024
IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3... Moderate Unreviewed
CVE-2024-22329 was published Apr 17, 2024
Server-Side Request Forgery (SSRF) vulnerability in ActiveCampaign.This issue affects... Moderate Unreviewed
CVE-2024-32430 was published Apr 15, 2024
Server-Side Request Forgery (SSRF) vulnerability in Wappointment Appointment Bookings for Zoom... Moderate Unreviewed
CVE-2024-32454 was published Apr 15, 2024
Users with low privileges can perform certain AJAX actions. In this vulnerability instance,... Moderate Unreviewed
CVE-2024-3448 was published Apr 10, 2024
Server-side request forgery (SSRF) in PingFederate allows unauthenticated http requests to attack... Moderate Unreviewed
CVE-2023-40148 was published Apr 10, 2024
SAP NetWeaver application, due to insufficient input validation, allows an attacker to send a... Moderate Unreviewed
CVE-2024-27898 was published Apr 9, 2024
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2024-20332 was published Apr 3, 2024
Server-Side Request Forgery (SSRF) vulnerability in Kadence WP Gutenberg Blocks by Kadence Blocks... Moderate Unreviewed
CVE-2024-24888 was published Apr 2, 2024
Server-Side Request Forgery (SSRF) vulnerability in Builderall Team Builderall Builder for... Moderate Unreviewed
CVE-2024-30532 was published Apr 2, 2024
Server-Side Request Forgery (SSRF) vulnerability in Nelio Software Nelio Content.This issue... Moderate Unreviewed
CVE-2024-30531 was published Apr 2, 2024
Server-Side Request Forgery (SSRF) vulnerability in Brave Brave Popup Builder.This issue affects... Moderate Unreviewed
CVE-2024-30453 was published Mar 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in NiteoThemes CMP – Coming Soon & Maintenance... Moderate Unreviewed
CVE-2023-50374 was published Mar 28, 2024
Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This... Moderate Unreviewed
CVE-2024-29090 was published Mar 28, 2024
The CRM platform Twenty version 0.3.0 is vulnerable to SSRF via file upload. Moderate Unreviewed
CVE-2024-28435 was published Mar 25, 2024
A vulnerability, which was classified as critical, has been found in lakernote EasyAdmin up to... Moderate Unreviewed
CVE-2024-2827 was published Mar 22, 2024
A vulnerability, which was classified as critical, was found in lakernote EasyAdmin up to... Moderate Unreviewed
CVE-2024-2828 was published Mar 22, 2024
Server Side Request Forgery (SSRF) vulnerability in Likeshop before 2.5.7 allows attackers to... Moderate Unreviewed
CVE-2024-24028 was published Mar 21, 2024
This is a Server-Side Request Forgery (SSRF) vulnerability in the PaperCut NG/MF server-side... Moderate Unreviewed
CVE-2024-1884 was published Mar 14, 2024
Server-Side Request Forgery (SSRF) in Citrix SD-WAN Standard/Premium Editions on or after 11.4.0... Moderate Unreviewed
CVE-2024-2049 was published Mar 12, 2024
Server Side Request Forgery (SSRF) vulnerability in hcengineering Huly Platform v.0.6.202 allows... Moderate Unreviewed
CVE-2024-27707 was published Mar 7, 2024
A Server-Side Request Forgery (SSRF) in the getFileFromRepo function of WonderCMS v3.1.3 allows... Moderate Unreviewed
CVE-2024-27563 was published Mar 5, 2024
A Server-Side Request Forgery (SSRF) in pictureproxy.php of ChatGPT commit f9f4bbc allows... Moderate Unreviewed
CVE-2024-27564 was published Mar 5, 2024
A vulnerability was found in Harrison Chase LangChain 0.1.9. It has been classified as critical.... Moderate Unreviewed
CVE-2024-2057 was published Mar 1, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database