GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,474

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

368 advisories

Filter by severity

Sort by

Least recently updated

Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot allows... Moderate Unreviewed

CVE-2024-38791 was published Aug 1, 2024

The Remote Content Shortcode plugin for WordPress is vulnerable to Server-Side Request Forgery in... Moderate Unreviewed

CVE-2024-2090 was published Aug 1, 2024

A vulnerability has been found in YouDianCMS 7 and classified as critical. Affected by this... Moderate Unreviewed

CVE-2024-7330 was published Aug 1, 2024

Automation Anywhere Automation 360 v21-v32 is vulnerable to Server-Side Request Forgery in a web... Moderate Unreviewed

CVE-2024-6922 was published Jul 26, 2024

Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor.This... Moderate Unreviewed

CVE-2024-38730 was published Jul 22, 2024

Server-Side Request Forgery (SSRF) vulnerability in Bernhard Kux JSON Content Importer.This issue... Moderate Unreviewed

CVE-2024-38723 was published Jul 22, 2024

Server-Side Request Forgery (SSRF) vulnerability in WappPress Team WappPress.This issue affects... Moderate Unreviewed

CVE-2024-38758 was published Jul 20, 2024

The server responded with an HTTP status of 500, indicating a server-side error that may cause... Moderate Unreviewed

CVE-2024-30125 was published Jul 18, 2024

There is an SSRF vulnerability in the Fluid Topics platform that affects versions prior to 4.3,... Moderate Unreviewed

CVE-2023-31456 was published Jul 16, 2024

The vulnerability allows a malicious low-privileged PAM user to perform server upgrade related... Moderate Unreviewed

CVE-2024-36458 was published Jul 15, 2024

IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 is vulnerable to server-side request... Moderate Unreviewed

CVE-2024-39739 was published Jul 15, 2024

SAP Transportation Management (Collaboration Portal) allows an attacker with non-administrative... Moderate Unreviewed

CVE-2024-37171 was published Jul 9, 2024

WebFlow Services of SAP Business Workflow allows an authenticated attacker to enumerate... Moderate Unreviewed

CVE-2024-34689 was published Jul 9, 2024

SAP CRM (WebClient UI Framework) allows an authenticated attacker to enumerate accessible HTTP... Moderate Unreviewed

CVE-2024-39598 was published Jul 9, 2024

IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20... Moderate Unreviewed

CVE-2024-31897 was published Jul 8, 2024

A vulnerability in the /models/apply endpoint of mudler/localai versions 2.15.0 allows for Server... Moderate Unreviewed

CVE-2024-6095 was published Jul 6, 2024

Server-Side Request Forgery (SSRF) vulnerability in Robert Macchi WP Scraper.This issue affects... Moderate Unreviewed

CVE-2024-37208 was published Jul 6, 2024

IBM InfoSphere Information Server 11.7 is vulnerable to server-side request forgery (SSRF). This... Moderate Unreviewed

CVE-2023-50952 was published Jun 30, 2024

Server-Side Request Forgery (SSRF) vulnerability in Blossom Themes BlossomThemes Email Newsletter... Moderate Unreviewed

CVE-2024-37098 was published Jun 26, 2024

Apache XML Security for C++ through 2.0.4 implements the XML Signature Syntax and Processing ... Moderate Unreviewed

CVE-2024-34580 was published Jun 26, 2024

Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a... Moderate Unreviewed

CVE-2024-29173 was published Jun 26, 2024

The TablePress – Tables in WordPress made easy plugin for WordPress is vulnerable to Server-Side... Moderate Unreviewed

CVE-2024-4354 was published Jun 7, 2024

Prior to 23.2, it is possible to perform arbitrary Server-Side requests via HTTP-based connectors... Moderate Unreviewed

CVE-2024-4219 was published Jun 4, 2024

Server-Side Request Forgery (SSRF) vulnerability in CreativeThemes Blocksy Companion.This issue... Moderate Unreviewed

CVE-2024-35633 was published Jun 3, 2024

Server-Side Request Forgery (SSRF) vulnerability in WPManageNinja LLC Ninja Tables.This issue... Moderate Unreviewed

CVE-2024-35635 was published Jun 3, 2024

Previous 1 2 3 4 5 … 14 15 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

368 advisories