Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,971
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+

10,603 advisories

Some Honor products are affected by information leak vulnerability, successful exploitation... Low Unreviewed
CVE-2023-23440 was published Dec 29, 2023
Some Honor products are affected by out of bounds read vulnerability, successful exploitation... Low Unreviewed
CVE-2023-51432 was published Dec 29, 2023
Some Honor products are affected by incorrect privilege assignment vulnerability, successful... Low Unreviewed
CVE-2023-51433 was published Dec 29, 2023
Missing Authorization vulnerability in Anders Thorborg.This issue affects Anders Thorborg: from n... Low Unreviewed
CVE-2023-22676 was published Dec 29, 2023
A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as... Low Unreviewed
CVE-2023-7160 was published Dec 29, 2023
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in SolidWP Solid Security –... Low Unreviewed
CVE-2023-28786 was published Dec 29, 2023
A vulnerability, which was classified as problematic, was found in Poly CCX 400, CCX 600, Trio... Low Unreviewed
CVE-2023-4465 was published Dec 29, 2023
A vulnerability classified as problematic has been found in Poly CCX 400, CCX 600, Trio 8800 and... Low Unreviewed
CVE-2023-4462 was published Dec 29, 2023
A vulnerability has been found in Poly CCX 400, CCX 600, Trio 8800 and Trio C60 and classified as... Low Unreviewed
CVE-2023-4466 was published Dec 29, 2023
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Low Unreviewed
CVE-2023-41813 was published Dec 29, 2023
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Low Unreviewed
CVE-2023-41814 was published Dec 29, 2023
Mattermost Cross-site Scripting vulnerability Low
CVE-2023-7113 was published for github.com/mattermost/mattermost/server/v8 (Go) Dec 29, 2023
A vulnerability was found in Novel-Plus up to 4.2.0. It has been declared as problematic.... Low Unreviewed
CVE-2023-7171 was published Dec 29, 2023
Gallery3d on Tecno Camon X CA7 devices allows attackers to view hidden images by navigating to... Low Unreviewed
CVE-2023-52275 was published Dec 31, 2023
A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as... Low Unreviewed
CVE-2024-0181 was published Jan 1, 2024
A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been classified... Low Unreviewed
CVE-2024-0183 was published Jan 2, 2024
A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as... Low Unreviewed
CVE-2024-0184 was published Jan 2, 2024
A vulnerability classified as problematic has been found in HuiRan Host Reseller System up to 2.0... Low Unreviewed
CVE-2024-0186 was published Jan 2, 2024
in OpenHarmony v3.2.2 and prior versions allow a local attacker cause DOS through occupy all... Low Unreviewed
CVE-2023-47216 was published Jan 2, 2024
Mattermost allows demoted guests to change group names Low
CVE-2023-50333 was published for github.com/mattermost/mattermost/server/v8 (Go) Jan 2, 2024
Winter CMS Local File Inclusion through Server Side Template Injection Low
CVE-2023-52085 was published for winter/wn-backend-module (Composer) Jan 2, 2024
Sanineng
A vulnerability, which was classified as problematic, was found in RRJ Nueva Ecija Engineer... Low Unreviewed
CVE-2024-0188 was published Jan 2, 2024
A vulnerability has been found in Zimbra zm-ajax up to 8.8.1 and classified as problematic.... Low Unreviewed
CVE-2017-20188 was published Jan 2, 2024
Gila CMS SQL Injection vulnerability Low
CVE-2020-26624 was published for gilacms/gila (Composer) Jan 3, 2024
Gila CMS SQL Injection vulnerability Low
CVE-2020-26625 was published for gilacms/gila (Composer) Jan 3, 2024
ProTip! Advisories are also available from the GraphQL API