Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

104,444 advisories

Loading
Local File Inclusion in mlflow High
CVE-2024-2928 was published for mlflow (pip) Jun 6, 2024
An OS command injection vulnerability exists in the MacOS Text-To-Speech class MacOSTTS of the... High Unreviewed
CVE-2024-1880 was published Jun 6, 2024
An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when... High Unreviewed
CVE-2024-36732 was published Jun 6, 2024
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of... High Unreviewed
CVE-2024-36734 was published Jun 6, 2024
Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of... High Unreviewed
CVE-2024-36730 was published Jun 6, 2024
A Cross-Site Request Forgery (CSRF) vulnerability exists in the profile picture upload... High Unreviewed
CVE-2024-2288 was published Jun 6, 2024
Kofax Power PDF JPF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-30373 was published Jun 6, 2024
A path traversal vulnerability exists in the parisneo/lollms-webui application, specifically... High Unreviewed
CVE-2024-2548 was published Jun 6, 2024
IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 is vulnerable to an XML... High Unreviewed
CVE-2023-45192 was published Jun 6, 2024
parisneo/lollms-webui is vulnerable to path traversal and denial of service attacks due to an... High Unreviewed
CVE-2024-1873 was published Jun 6, 2024
Jupyter server on Windows discloses Windows user password hash High
CVE-2024-35178 was published for jupyter_server (pip) Jun 6, 2024
nvn1729
Contract balance not updating correctly after interchain transaction High
CVE-2024-37153 was published for github.com/evmos/evmos/v10 (Go) Jun 6, 2024
Vvaradinov EvmosDAO
Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-5508 was published Jun 6, 2024
Luxion KeyShot Viewer KSP File Parsing Stack-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2024-5507 was published Jun 6, 2024
Luxion KeyShot BIP File Parsing Uncontrolled Search Path Element Remote Code Execution... High Unreviewed
CVE-2024-5509 was published Jun 6, 2024
Luxion KeyShot Viewer KSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-5506 was published Jun 6, 2024
An improper access control vulnerability exists in lunary-ai/lunary versions up to and including... High Unreviewed
CVE-2024-3504 was published Jun 6, 2024
A Server-Side Request Forgery (SSRF) vulnerability exists in the 'add_webpage' endpoint of the... High Unreviewed
CVE-2024-5482 was published Jun 6, 2024
Server-Side Request Forgery in gradio High
CVE-2024-4325 was published for gradio (pip) Jun 6, 2024
Local file inclusion in gradio High
CVE-2024-4941 was published for gradio (pip) Jun 6, 2024
NETGEAR ProSAFE Network Management System UpLoadServlet Directory Traversal Remote Code Execution... High Unreviewed
CVE-2024-5505 was published Jun 6, 2024
Kofax Power PDF PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-5301 was published Jun 6, 2024
A code injection vulnerability exists in the berriai/litellm application, version 1.34.6, due to... High Unreviewed
CVE-2024-4889 was published Jun 6, 2024
Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-5302 was published Jun 6, 2024
Kofax Power PDF PSD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-5303 was published Jun 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database