Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

478 advisories

Loading
Users with low privileges can perform certain AJAX actions. In this vulnerability instance,... Moderate Unreviewed
CVE-2024-3448 was published Apr 10, 2024
Server-side request forgery (SSRF) in PingFederate allows unauthenticated http requests to attack... Moderate Unreviewed
CVE-2023-40148 was published Apr 10, 2024
SAP NetWeaver application, due to insufficient input validation, allows an attacker to send a... Moderate Unreviewed
CVE-2024-27898 was published Apr 9, 2024
Mobile Security Framework (MobSF) vulnerable to SSRF in firebase database check Moderate
CVE-2024-31215 was published for mobsf (pip) Apr 4, 2024
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2024-20332 was published Apr 3, 2024
Server-Side Request Forgery (SSRF) vulnerability in Nelio Software Nelio Content.This issue... Moderate Unreviewed
CVE-2024-30531 was published Apr 2, 2024
Server-Side Request Forgery (SSRF) vulnerability in Kadence WP Gutenberg Blocks by Kadence Blocks... Moderate Unreviewed
CVE-2024-24888 was published Apr 2, 2024
Server-Side Request Forgery (SSRF) vulnerability in Builderall Team Builderall Builder for... Moderate Unreviewed
CVE-2024-30532 was published Apr 2, 2024
Server-Side Request Forgery (SSRF) vulnerability in Brave Brave Popup Builder.This issue affects... Moderate Unreviewed
CVE-2024-30453 was published Mar 29, 2024
Server-Side Request Forgery (SSRF) vulnerability in NiteoThemes CMP – Coming Soon & Maintenance... Moderate Unreviewed
CVE-2023-50374 was published Mar 28, 2024
Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This... Moderate Unreviewed
CVE-2024-29090 was published Mar 28, 2024
The CRM platform Twenty version 0.3.0 is vulnerable to SSRF via file upload. Moderate Unreviewed
CVE-2024-28435 was published Mar 25, 2024
A vulnerability, which was classified as critical, has been found in lakernote EasyAdmin up to... Moderate Unreviewed
CVE-2024-2827 was published Mar 22, 2024
A vulnerability, which was classified as critical, was found in lakernote EasyAdmin up to... Moderate Unreviewed
CVE-2024-2828 was published Mar 22, 2024
Server Side Request Forgery (SSRF) vulnerability in Likeshop before 2.5.7 allows attackers to... Moderate Unreviewed
CVE-2024-24028 was published Mar 21, 2024
This is a Server-Side Request Forgery (SSRF) vulnerability in the PaperCut NG/MF server-side... Moderate Unreviewed
CVE-2024-1884 was published Mar 14, 2024
Server-Side Request Forgery (SSRF) in Citrix SD-WAN Standard/Premium Editions on or after 11.4.0... Moderate Unreviewed
CVE-2024-2049 was published Mar 12, 2024
Server Side Request Forgery (SSRF) vulnerability in hcengineering Huly Platform v.0.6.202 allows... Moderate Unreviewed
CVE-2024-27707 was published Mar 7, 2024
RSSHub vulnerable to Server-Side Request Forgery Moderate
CVE-2024-27927 was published for rsshub (npm) Mar 6, 2024
ouuan DIYgod
A Server-Side Request Forgery (SSRF) in pictureproxy.php of ChatGPT commit f9f4bbc allows... Moderate Unreviewed
CVE-2024-27564 was published Mar 5, 2024
A Server-Side Request Forgery (SSRF) in the getFileFromRepo function of WonderCMS v3.1.3 allows... Moderate Unreviewed
CVE-2024-27563 was published Mar 5, 2024
A vulnerability was found in Harrison Chase LangChain 0.1.9. It has been classified as critical.... Moderate Unreviewed
CVE-2024-2057 was published Mar 1, 2024
Server-Side Request Forgery (SSRF) vulnerability in sirv.Com Image Optimizer, Resizer and CDN –... Moderate Unreviewed
CVE-2024-27949 was published Mar 1, 2024
Recipes version 1.5.10 allows arbitrary HTTP requests to be made through the server. This is... Moderate Unreviewed
CVE-2024-0403 was published Mar 1, 2024
Server-Side Request Forgery vulnerability in Haivision's Aviwest Manager and Aviwest Steamhub.... Moderate Unreviewed
CVE-2024-1965 was published Feb 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database