Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,405
Maven
5,000+
npm
5,000+
NuGet
882
pip
4,641
Pub
13
RubyGems
1,026
Rust
1,209
Swift
53
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

25,562 advisories

Loading
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability Critical Unreviewed
CVE-2023-32014 was published Jun 14, 2023
Microsoft SharePoint Server Elevation of Privilege Vulnerability Critical Unreviewed
CVE-2023-29357 was published Jun 14, 2023
Potential XML External Entity Injection in ArcSight Logger versions prior to 7.3.0. Critical Unreviewed
CVE-2023-24470 was published Jun 14, 2023
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability Critical Unreviewed
CVE-2023-29363 was published Jun 14, 2023
An arbitrary file upload vulnerability in the /fileUpload.lib.php component of Chamilo 1.11.* up... Critical Unreviewed
CVE-2023-34944 was published Jun 13, 2023
TP-Link TL-WPA7510 (EU)_V2_190125 was discovered to contain a stack overflow via the operation... Critical Unreviewed
CVE-2023-29562 was published Jun 13, 2023
Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via shellescape(), jhead.c,... Critical Unreviewed
CVE-2022-28550 was published Jun 13, 2023
TP-Link TL-WPA8630P (US)_ V2_ Version 171011 was discovered to contain a command injection... Critical Unreviewed
CVE-2023-27836 was published Jun 13, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-35064 was published Jun 13, 2023
TP-Link TL-WPA8630P (US)_ V2_ Version 171011 was discovered to contain a command injection... Critical Unreviewed
CVE-2023-27837 was published Jun 13, 2023
A unrestricted file upload vulnerability was discovered in the ‘Browse and upload images’ feature... Critical Unreviewed
CVE-2023-31541 was published Jun 13, 2023
Unrestricted Upload of File with Dangerous Type vulnerability in TMT Lockcell allows Command... Critical Unreviewed
CVE-2023-3049 was published Jun 13, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-3047 was published Jun 13, 2023
Authorization Bypass Through User-Controlled Key vulnerability in TMT Lockcell allows... Critical Unreviewed
CVE-2023-3048 was published Jun 13, 2023
Authentication Bypass by Spoofing vulnerability in the password reset process of Pandora FMS... Critical Unreviewed
CVE-2023-2807 was published Jun 13, 2023
Reliance on Cookies without Validation and Integrity Checking in a Security Decision... Critical Unreviewed
CVE-2023-3050 was published Jun 13, 2023
OS command injection vulnerability exists in KB-AHR series and KB-IRIP series. If this... Critical Unreviewed
CVE-2023-30764 was published Jun 13, 2023
Improper authentication vulnerability exists in KB-AHR series and KB-IRIP series. If this... Critical Unreviewed
CVE-2023-30762 was published Jun 13, 2023
Hidden functionality issue exists in KB-AHR series and KB-IRIP series. If this vulnerability is... Critical Unreviewed
CVE-2023-30766 was published Jun 13, 2023
A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions >= V1.17.3... Critical Unreviewed
CVE-2023-29129 was published Jun 13, 2023
A plaintext storage of a password vulnerability [CWE-256] in FortiSIEM 6.7 all versions, 6.6 all... Critical Unreviewed
CVE-2023-26204 was published Jun 13, 2023
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS version 7.2.4 and below, version... Critical Unreviewed
CVE-2023-27997 was published Jun 13, 2023
The WP Directory Kit plugin for WordPress is vulnerable to Local File Inclusion in versions up to... Critical Unreviewed
CVE-2023-2278 was published Jun 13, 2023
Certain versions of HP PC Hardware Diagnostics Windows, HP Image Assistant, and HP Thunderbolt... Critical Unreviewed
CVE-2023-32673 was published Jun 13, 2023
Certain versions of HP PC Hardware Diagnostics Windows are potentially vulnerable to buffer... Critical Unreviewed
CVE-2023-32674 was published Jun 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database