GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
242,542 advisories
Filter by severity
Develocity (formerly Gradle Enterprise) before 2024.3.1 allows an attacker who has network access...
Unknown
Unreviewed
CVE-2025-24858
was published
Jan 26, 2025
The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-10574
was published
Jan 26, 2025
The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to SQL...
High
Unreviewed
CVE-2024-10628
was published
Jan 26, 2025
xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free.
High
Unreviewed
CVE-2022-49043
was published
Jan 26, 2025
The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to arbitrary...
High
Unreviewed
CVE-2024-10633
was published
Jan 26, 2025
The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to Reflected...
Moderate
Unreviewed
CVE-2024-10636
was published
Jan 26, 2025
Local privilege escalation due to incorrect assignment of privileges of temporary files in the...
High
Unreviewed
CVE-2025-0542
was published
Jan 25, 2025
Local privilege escalation in G DATA Security Client due to incorrect assignment of privileges to...
High
Unreviewed
CVE-2025-0543
was published
Jan 25, 2025
IBM Maximo Application Suite 8.10.12, 8.11.0, 9.0.1, and 9.1.0 - Monitor Component does not...
Moderate
Unreviewed
CVE-2024-35150
was published
Jan 25, 2025
IBM Maximo Application Suite 8.10, 8.11, and 9.0 - Monitor Component stores source code on the...
Moderate
Unreviewed
CVE-2024-35144
was published
Jan 25, 2025
IBM Maximo Application Suite 9.0.0 - Monitor Component is vulnerable to cross-site scripting....
Moderate
Unreviewed
CVE-2024-35145
was published
Jan 25, 2025
IBM Maximo Application Suite 8.10.10, 8.11.7, and 9.0 - Monitor Component is vulnerable to SQL...
Moderate
Unreviewed
CVE-2024-35148
was published
Jan 25, 2025
IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2...
Moderate
Unreviewed
CVE-2023-38013
was published
Jan 25, 2025
IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2...
Moderate
Unreviewed
CVE-2023-38271
was published
Jan 25, 2025
IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when...
Moderate
Unreviewed
CVE-2024-35134
was published
Jan 25, 2025
IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information...
Moderate
Unreviewed
CVE-2024-35111
was published
Jan 25, 2025
IBM Cloud Pak System 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0...
Moderate
Unreviewed
CVE-2023-38012
was published
Jan 25, 2025
IBM Control Center 6.2.1 and 6.3.1
could allow a remote attacker to enumerate usernames due...
Moderate
Unreviewed
CVE-2024-35114
was published
Jan 25, 2025
IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2...
Moderate
Unreviewed
CVE-2023-38713
was published
Jan 25, 2025
IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2...
Moderate
Unreviewed
CVE-2023-38714
was published
Jan 25, 2025
IBM Control Center 6.2.1 and 6.3.1
could allow an authenticated user to obtain sensitive...
Moderate
Unreviewed
CVE-2024-35113
was published
Jan 25, 2025
IBM Analytics Content Hub 2.0 is vulnerable to a buffer overflow due to improper return length...
High
Unreviewed
CVE-2024-39750
was published
Jan 25, 2025
IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0...
Moderate
Unreviewed
CVE-2023-38716
was published
Jan 25, 2025
IBM Control Center 6.2.1 and 6.3.1
could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2024-35112
was published
Jan 25, 2025
The Divi Carousel Maker – Image, Logo, Testimonial, Post Carousel & More plugin for WordPress is...
Moderate
Unreviewed
CVE-2025-0350
was published
Jan 25, 2025
ProTip!
Advisories are also available from the
GraphQL API