GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,971
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+
10,603 advisories
Filter by severity
Some Honor products are affected by information leak vulnerability, successful exploitation...
Low
Unreviewed
CVE-2023-23440
was published
Dec 29, 2023
Some Honor products are affected by out of bounds read vulnerability, successful exploitation...
Low
Unreviewed
CVE-2023-51432
was published
Dec 29, 2023
Some Honor products are affected by incorrect privilege assignment vulnerability, successful...
Low
Unreviewed
CVE-2023-51433
was published
Dec 29, 2023
Missing Authorization vulnerability in Anders Thorborg.This issue affects Anders Thorborg: from n...
Low
Unreviewed
CVE-2023-22676
was published
Dec 29, 2023
A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as...
Low
Unreviewed
CVE-2023-7160
was published
Dec 29, 2023
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in SolidWP Solid Security –...
Low
Unreviewed
CVE-2023-28786
was published
Dec 29, 2023
A vulnerability, which was classified as problematic, was found in Poly CCX 400, CCX 600, Trio...
Low
Unreviewed
CVE-2023-4465
was published
Dec 29, 2023
A vulnerability classified as problematic has been found in Poly CCX 400, CCX 600, Trio 8800 and...
Low
Unreviewed
CVE-2023-4462
was published
Dec 29, 2023
A vulnerability has been found in Poly CCX 400, CCX 600, Trio 8800 and Trio C60 and classified as...
Low
Unreviewed
CVE-2023-4466
was published
Dec 29, 2023
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Low
Unreviewed
CVE-2023-41813
was published
Dec 29, 2023
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Low
Unreviewed
CVE-2023-41814
was published
Dec 29, 2023
Mattermost Cross-site Scripting vulnerability
Low
CVE-2023-7113
was published
for
github.com/mattermost/mattermost/server/v8
(Go)
Dec 29, 2023
A vulnerability was found in Novel-Plus up to 4.2.0. It has been declared as problematic....
Low
Unreviewed
CVE-2023-7171
was published
Dec 29, 2023
Gallery3d on Tecno Camon X CA7 devices allows attackers to view hidden images by navigating to...
Low
Unreviewed
CVE-2023-52275
was published
Dec 31, 2023
A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as...
Low
Unreviewed
CVE-2024-0181
was published
Jan 1, 2024
A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been classified...
Low
Unreviewed
CVE-2024-0183
was published
Jan 2, 2024
A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as...
Low
Unreviewed
CVE-2024-0184
was published
Jan 2, 2024
A vulnerability classified as problematic has been found in HuiRan Host Reseller System up to 2.0...
Low
Unreviewed
CVE-2024-0186
was published
Jan 2, 2024
in OpenHarmony v3.2.2 and prior versions allow a local attacker cause DOS through occupy all...
Low
Unreviewed
CVE-2023-47216
was published
Jan 2, 2024
Mattermost allows demoted guests to change group names
Low
CVE-2023-50333
was published
for
github.com/mattermost/mattermost/server/v8
(Go)
Jan 2, 2024
Winter CMS Local File Inclusion through Server Side Template Injection
Low
CVE-2023-52085
was published
for
winter/wn-backend-module
(Composer)
Jan 2, 2024
A vulnerability, which was classified as problematic, was found in RRJ Nueva Ecija Engineer...
Low
Unreviewed
CVE-2024-0188
was published
Jan 2, 2024
A vulnerability has been found in Zimbra zm-ajax up to 8.8.1 and classified as problematic....
Low
Unreviewed
CVE-2017-20188
was published
Jan 2, 2024
Gila CMS SQL Injection vulnerability
Low
CVE-2020-26624
was published
for
gilacms/gila
(Composer)
Jan 3, 2024
Gila CMS SQL Injection vulnerability
Low
CVE-2020-26625
was published
for
gilacms/gila
(Composer)
Jan 3, 2024
ProTip!
Advisories are also available from the
GraphQL API