Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,946
Erlang
29
GitHub Actions
16
Go
1,734
Maven
4,963
npm
3,493
NuGet
607
pip
3,059
Pub
10
RubyGems
832
Rust
779
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

86,533 advisories

An issue in the chash_array component of openlink virtuoso-opensource v7.2.9 allows attackers to... High Unreviewed
CVE-2023-31615 was published May 15, 2023
An issue in the sch_name_to_object component of openlink virtuoso-opensource v7.2.9 allows... High Unreviewed
CVE-2023-31619 was published May 15, 2023
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/index.php... High Unreviewed
CVE-2023-31842 was published May 15, 2023
This HTTP Headers WordPress plugin before 1.18.8 has an import functionality which executes... High Unreviewed
CVE-2023-1207 was published May 15, 2023
The Active Directory Integration / LDAP Integration WordPress plugin before 4.1.1 does not have... High Unreviewed
CVE-2023-0812 was published May 15, 2023
The KIWIZ Invoices Certification & PDF System WordPress plugin through 2.1.3 does not validate... High Unreviewed
CVE-2023-2180 was published May 15, 2023
The Ad Inserter WordPress plugin before 2.7.27 unserializes user input provided via the settings,... High Unreviewed
CVE-2023-1549 was published May 15, 2023
Inadequate Encryption Strength in CODESYS Development System V3 versions prior to V3.5.18.40... High Unreviewed
CVE-2022-4048 was published May 15, 2023
Uncontrolled Resource Consumption in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215... High Unreviewed
CVE-2023-23447 was published May 15, 2023
Uncontrolled Resource Consumption in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215... High Unreviewed
CVE-2023-31409 was published May 15, 2023
Improper Access Control in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215, 1100216,... High Unreviewed
CVE-2023-23446 was published May 15, 2023
Improper Access Control in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215, 1100216,... High Unreviewed
CVE-2023-23445 was published May 15, 2023
In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a... High Unreviewed
CVE-2022-47391 was published May 15, 2023
Denial of service in Webconf in Tribe29 Checkmk Appliance before 1.6.5. High Unreviewed
CVE-2023-22318 was published May 15, 2023
In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory... High Unreviewed
CVE-2023-32784 was published May 15, 2023
A maliciously crafted DLL file can be forced to read beyond allocated boundaries in Autodesk... High Unreviewed
CVE-2023-25005 was published May 12, 2023
VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious... High Unreviewed
CVE-2023-20877 was published May 12, 2023
A malicious actor may convince a user to open a malicious USD file that may trigger an out-of... High Unreviewed
CVE-2023-25009 was published May 12, 2023
VMware Aria Operations contains a deserialization vulnerability. A malicious actor with... High Unreviewed
CVE-2023-20878 was published May 12, 2023
A malicious actor may convince a user to open a malicious USD file that may trigger a use-after... High Unreviewed
CVE-2023-25006 was published May 12, 2023
A malicious actor may convince a user to open a malicious USD file that may trigger an out-of... High Unreviewed
CVE-2023-25008 was published May 12, 2023
A malicious actor may convince a user to open a malicious USD file that may trigger an... High Unreviewed
CVE-2023-25007 was published May 12, 2023
A DLL Hijacking issue discovered in Soft-o Free Password Manager 1.1.20 allows attackers to... High Unreviewed
CVE-2023-25428 was published May 12, 2023
Out of bounds write in ChromeOS Audio Server in Google Chrome on ChromeOS prior to 113.0.5672.114... High Unreviewed
CVE-2023-2457 was published May 12, 2023
Use after free in ChromeOS Camera in Google Chrome on ChromeOS prior to 113.0.5672.114 allowed a... High Unreviewed
CVE-2023-2458 was published May 12, 2023
ProTip! Advisories are also available from the GraphQL API