GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
84 advisories
Filter by severity
In the keystore library, there is a possible prevention of access to system Settings due to...
Moderate
Unreviewed
CVE-2022-20195
was published
Jun 16, 2022
In BIG-IP Versions 16.1.x before 16.1.3, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all...
Moderate
Unreviewed
CVE-2022-33947
was published
Aug 5, 2022
Serialization of sensitive data in GitLab EE affecting all versions from 14.9 prior to 15.2.5, 15...
Moderate
Unreviewed
CVE-2022-3291
was published
Oct 17, 2022
A vulnerability, which was classified as problematic, has been found in DataGear up to 4.5.1....
Moderate
Unreviewed
CVE-2023-2042
was published
Apr 14, 2023
A vulnerability was found in Zhong Bang CRMEB up to 4.6.0 and classified as critical. This issue...
Moderate
Unreviewed
CVE-2023-3232
was published
Jun 14, 2023
A vulnerability was found in Zhong Bang CRMEB up to 4.6.0. It has been declared as problematic....
Moderate
Unreviewed
CVE-2023-3234
was published
Jun 14, 2023
In initiateVenueUrlAnqpQueryInternal of sta_iface.cpp, there is a possible out of bounds read due...
Moderate
Unreviewed
CVE-2023-21206
was published
Jun 28, 2023
In multiple functions of sta_iface.cpp, there is a possible out of bounds read due to unsafe...
Moderate
Unreviewed
CVE-2023-21209
was published
Jun 28, 2023
In startWpsPinDisplayInternal of sta_iface.cpp, there is a possible out of bounds read due to...
Moderate
Unreviewed
CVE-2023-21205
was published
Jun 28, 2023
IBM B2B Advanced Communications 1.0.0.0 and IBM Multi-Enterprise Integration Gateway 1.0.0.1...
Moderate
Unreviewed
CVE-2023-24971
was published
Jul 31, 2023
A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue...
Moderate
Unreviewed
CVE-2023-32665
was published
Sep 14, 2023
A vulnerability was found in spider-flow up to 0.5.0. It has been declared as critical. Affected...
Moderate
Unreviewed
CVE-2023-5016
was published
Sep 17, 2023
In spring AMQP versions 1.0.0 to
2.4.16 and 3.0.0 to 3.0.9 , allowed list patterns for...
Moderate
Unreviewed
CVE-2023-34050
was published
Oct 19, 2023
In appendEscapedSQLString of DatabaseUtils.java, there is a possible SQL injection due to unsafe...
Moderate
Unreviewed
CVE-2023-40121
was published
Oct 27, 2023
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in DeepFaceLab pretrained DF.wf.288res...
Moderate
Unreviewed
CVE-2023-6656
was published
Dec 10, 2023
Deserialization of Untrusted Data vulnerability in E2Pdf.Com E2Pdf – Export To Pdf Tool for...
Moderate
Unreviewed
CVE-2023-46154
was published
Dec 19, 2023
Deserialization of Untrusted Data vulnerability in weDevs Dokan – Best WooCommerce Multivendor...
Moderate
Unreviewed
CVE-2023-34382
was published
Dec 19, 2023
Deserialization of Untrusted Data vulnerability in File Manager by Bit Form Team File Manager –...
Moderate
Unreviewed
CVE-2022-47599
was published
Dec 20, 2023
Deserialization of Untrusted Data vulnerability in Gesundheit Bewegt GmbH Zippy.This issue...
Moderate
Unreviewed
CVE-2023-36381
was published
Dec 28, 2023
A vulnerability, which was classified as critical, has been found in fhs-opensource iparking 1.5...
Moderate
Unreviewed
CVE-2024-0302
was published
Jan 8, 2024
A vulnerability, which was classified as problematic, was found in DeepFaceLab pretrained DF.wf...
Moderate
Unreviewed
CVE-2024-0654
was published
Jan 18, 2024
Deserialization of Untrusted Data vulnerability in ProfilePress Membership Team Paid Membership...
Moderate
Unreviewed
CVE-2022-45083
was published
Jan 19, 2024
Deserialization of Untrusted Data vulnerability in Nextend Smart Slider 3.This issue affects...
Moderate
Unreviewed
CVE-2022-45845
was published
Jan 19, 2024
A vulnerability was found in StanfordVL GibsonEnv 0.3.1. It has been classified as critical....
Moderate
Unreviewed
CVE-2024-0959
was published
Jan 27, 2024
A vulnerability, which was classified as critical, was found in openBI up to 6.0.3. Affected is...
Moderate
Unreviewed
CVE-2024-1198
was published
Feb 3, 2024
ProTip!
Advisories are also available from the
GraphQL API