GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,946
Erlang
29
GitHub Actions
16
Go
1,734
Maven
4,963
npm
3,493
NuGet
607
pip
3,059
Pub
10
RubyGems
832
Rust
779
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
86,533 advisories
Filter by severity
An issue in the chash_array component of openlink virtuoso-opensource v7.2.9 allows attackers to...
High
Unreviewed
CVE-2023-31615
was published
May 15, 2023
An issue in the sch_name_to_object component of openlink virtuoso-opensource v7.2.9 allows...
High
Unreviewed
CVE-2023-31619
was published
May 15, 2023
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/index.php...
High
Unreviewed
CVE-2023-31842
was published
May 15, 2023
This HTTP Headers WordPress plugin before 1.18.8 has an import functionality which executes...
High
Unreviewed
CVE-2023-1207
was published
May 15, 2023
The Active Directory Integration / LDAP Integration WordPress plugin before 4.1.1 does not have...
High
Unreviewed
CVE-2023-0812
was published
May 15, 2023
The KIWIZ Invoices Certification & PDF System WordPress plugin through 2.1.3 does not validate...
High
Unreviewed
CVE-2023-2180
was published
May 15, 2023
The Ad Inserter WordPress plugin before 2.7.27 unserializes user input provided via the settings,...
High
Unreviewed
CVE-2023-1549
was published
May 15, 2023
Inadequate Encryption Strength in CODESYS Development System V3 versions prior to V3.5.18.40...
High
Unreviewed
CVE-2022-4048
was published
May 15, 2023
Uncontrolled Resource Consumption in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215...
High
Unreviewed
CVE-2023-23447
was published
May 15, 2023
Uncontrolled Resource Consumption in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215...
High
Unreviewed
CVE-2023-31409
was published
May 15, 2023
Improper Access Control in SICK FTMg AIR FLOW SENSOR with Partnumbers
1100214, 1100215, 1100216,...
High
Unreviewed
CVE-2023-23446
was published
May 15, 2023
Improper Access Control in SICK FTMg AIR FLOW SENSOR with Partnumbers
1100214, 1100215, 1100216,...
High
Unreviewed
CVE-2023-23445
was published
May 15, 2023
In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a...
High
Unreviewed
CVE-2022-47391
was published
May 15, 2023
Denial of service in Webconf in Tribe29 Checkmk Appliance before 1.6.5.
High
Unreviewed
CVE-2023-22318
was published
May 15, 2023
In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory...
High
Unreviewed
CVE-2023-32784
was published
May 15, 2023
A maliciously crafted DLL file can be forced to read beyond allocated boundaries in Autodesk...
High
Unreviewed
CVE-2023-25005
was published
May 12, 2023
VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious...
High
Unreviewed
CVE-2023-20877
was published
May 12, 2023
A malicious actor may convince a user to open a malicious USD file that may trigger an out-of...
High
Unreviewed
CVE-2023-25009
was published
May 12, 2023
VMware Aria Operations contains a deserialization vulnerability. A malicious actor with...
High
Unreviewed
CVE-2023-20878
was published
May 12, 2023
A malicious actor may convince a user to open a malicious USD file that may trigger a use-after...
High
Unreviewed
CVE-2023-25006
was published
May 12, 2023
A malicious actor may convince a user to open a malicious USD file that may trigger an out-of...
High
Unreviewed
CVE-2023-25008
was published
May 12, 2023
A malicious actor may convince a user to open a malicious USD file that may trigger an...
High
Unreviewed
CVE-2023-25007
was published
May 12, 2023
A DLL Hijacking issue discovered in Soft-o Free Password Manager 1.1.20 allows attackers to...
High
Unreviewed
CVE-2023-25428
was published
May 12, 2023
Out of bounds write in ChromeOS Audio Server in Google Chrome on ChromeOS prior to 113.0.5672.114...
High
Unreviewed
CVE-2023-2457
was published
May 12, 2023
Use after free in ChromeOS Camera in Google Chrome on ChromeOS prior to 113.0.5672.114 allowed a...
High
Unreviewed
CVE-2023-2458
was published
May 12, 2023
ProTip!
Advisories are also available from the
GraphQL API