GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
349 advisories
Filter by severity
Server-Side Request Forgery (SSRF) vulnerability in WisdmLabs Edwiser Bridge.This issue affects...
Moderate
Unreviewed
CVE-2024-49312
was published
Oct 17, 2024
Ada.cx's Sentry configuration allowed for blind server-side request forgeries (SSRF) through the...
Moderate
Unreviewed
CVE-2024-9410
was published
Oct 4, 2024
An issue in Doccano Open source annotation tools for machine learning practitioners v.1.8.4 and...
Moderate
Unreviewed
CVE-2024-40441
was published
Sep 23, 2024
Possible
External Service Interaction attack
in eDirectory has been discovered in
OpenText™...
Moderate
Unreviewed
CVE-2021-38132
was published
Sep 12, 2024
XML External Entity (XXE) vulnerability in Terminalfour 8.0.0001 through 8.3.18 and XML JDBC...
Moderate
Unreviewed
CVE-2024-22219
was published
Aug 15, 2024
A Server-Side Request Forgery (SSRF) vulnerability in Terminalfour before 8.3.19 allows...
Moderate
Unreviewed
CVE-2024-22217
was published
Aug 15, 2024
A vulnerability has been found in wanglongcn ltcms 1.0.20 and classified as critical. This...
Moderate
Unreviewed
CVE-2024-7740
was published
Aug 13, 2024
A vulnerability was found in wanglongcn ltcms 1.0.20. It has been declared as critical. Affected...
Moderate
Unreviewed
CVE-2024-7743
was published
Aug 13, 2024
A vulnerability was found in wanglongcn ltcms 1.0.20. It has been classified as critical....
Moderate
Unreviewed
CVE-2024-7742
was published
Aug 13, 2024
SAP CRM ABAP (Insights
Management) allows an authenticated attacker to enumerate HTTP endpoints...
Moderate
Unreviewed
CVE-2024-41737
was published
Aug 13, 2024
Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot allows...
Moderate
Unreviewed
CVE-2024-38791
was published
Aug 1, 2024
The Remote Content Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in...
Moderate
Unreviewed
CVE-2024-2090
was published
Aug 1, 2024
A vulnerability has been found in YouDianCMS 7 and classified as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-7330
was published
Aug 1, 2024
Automation Anywhere Automation 360 v21-v32 is vulnerable to Server-Side Request Forgery in a web...
Moderate
Unreviewed
CVE-2024-6922
was published
Jul 26, 2024
Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor.This...
Moderate
Unreviewed
CVE-2024-38730
was published
Jul 22, 2024
Server-Side Request Forgery (SSRF) vulnerability in Bernhard Kux JSON Content Importer.This issue...
Moderate
Unreviewed
CVE-2024-38723
was published
Jul 22, 2024
Server-Side Request Forgery (SSRF) vulnerability in WappPress Team WappPress.This issue affects...
Moderate
Unreviewed
CVE-2024-38758
was published
Jul 20, 2024
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 is vulnerable to server-side request...
Moderate
Unreviewed
CVE-2024-39739
was published
Jul 15, 2024
WebFlow Services of SAP Business Workflow allows
an authenticated attacker to enumerate...
Moderate
Unreviewed
CVE-2024-34689
was published
Jul 9, 2024
SAP Transportation Management (Collaboration
Portal) allows an attacker with non-administrative...
Moderate
Unreviewed
CVE-2024-37171
was published
Jul 9, 2024
SAP CRM (WebClient UI Framework) allows an
authenticated attacker to enumerate accessible HTTP...
Moderate
Unreviewed
CVE-2024-39598
was published
Jul 9, 2024
IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20...
Moderate
Unreviewed
CVE-2024-31897
was published
Jul 8, 2024
A vulnerability in the /models/apply endpoint of mudler/localai versions 2.15.0 allows for Server...
Moderate
Unreviewed
CVE-2024-6095
was published
Jul 6, 2024
Server-Side Request Forgery (SSRF) vulnerability in Robert Macchi WP Scraper.This issue affects...
Moderate
Unreviewed
CVE-2024-37208
was published
Jul 6, 2024
IBM InfoSphere Information Server 11.7 is vulnerable to server-side request forgery (SSRF). This...
Moderate
Unreviewed
CVE-2023-50952
was published
Jun 30, 2024
ProTip!
Advisories are also available from the
GraphQL API