GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,407
Composer 5,538
Erlang 49
GitHub Actions 49
Go 3,405
Maven 6,358
npm 5,578
NuGet 882
pip 4,641
Pub 13
RubyGems 1,026
Rust 1,209
Swift 53

Unreviewed advisories

All unreviewed 296,359

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

25,562 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Previous versions of HP Device Manager (prior to HPDM 5.0.10) could potentially allow command... Critical Unreviewed

CVE-2023-26295 was published Jun 13, 2023

D-Link DIR-600 Hardware Version B5, Firmware Version 2.18 was discovered to contain a command... Critical Unreviewed

CVE-2023-33625 was published Jun 12, 2023

An issue was discovered in freakchicken kafkaUI-lite 1.2.11 allows attackers on the same network... Critical Unreviewed

CVE-2023-27716 was published Jun 12, 2023

Milesight NCR/camera version 71.8.0.6-r5 allows authentication bypass through an unspecified method. Critical Unreviewed

CVE-2023-32220 was published Jun 12, 2023

D-Link DIR-600 Hardware Version B5, Firmware Version 2.18 was discovered to contain a stack... Critical Unreviewed

CVE-2023-33626 was published Jun 12, 2023

AMI BMC contains a vulnerability in the IPMI handler, where an attacker can upload and download... Critical Unreviewed

CVE-2023-34342 was published Jun 12, 2023

Sourcecodester Service Provider Management System v1.0 is vulnerable to SQL Injection via the ID... Critical Unreviewed

CVE-2023-34581 was published Jun 12, 2023

In Progress MOVEit Transfer before 2021.0.7 (13.0.7), 2021.1.5 (13.1.5), 2022.0.5 (14.0.5), 2022... Critical Unreviewed

CVE-2023-35036 was published Jun 12, 2023

Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8 and Manager V10 R1... Critical Unreviewed

CVE-2023-35034 was published Jun 12, 2023

The Danfoss AK-EM100 web forms allow for SQL injection in the login forms. Critical Unreviewed

CVE-2023-22583 was published Jun 11, 2023

The Danfoss AK-EM100 web applications allow for OS command injection through the web application... Critical Unreviewed

CVE-2023-25911 was published Jun 11, 2023

A buffer overflow was discovered in Progress DataDirect Connect for ODBC before 08.02.2770 for... Critical Unreviewed

CVE-2023-34364 was published Jun 9, 2023

The Quiz And Survey Master for WordPress is vulnerable to authorization bypass due to a missing... Critical Unreviewed

CVE-2023-0291 was published Jun 9, 2023

A debug feature in Sensormatic Electronics Illustra Pro Gen 4 Dome and PTZ cameras allows a user... Critical Unreviewed

CVE-2023-0954 was published Jun 8, 2023

The go command may generate unexpected code at build time when using cgo. This may result in... Critical Unreviewed

CVE-2023-29402 was published Jun 8, 2023

The go command may execute arbitrary code at build time when using cgo. This may occur when... Critical Unreviewed

CVE-2023-29405 was published Jun 8, 2023

The go command may execute arbitrary code at build time when using cgo. This may occur when... Critical Unreviewed

CVE-2023-29404 was published Jun 8, 2023

Incorrect access control in the administrative functionalities of BES--6024PB-I50H1 VideoPlayTool... Critical Unreviewed

CVE-2023-33443 was published Jun 8, 2023

Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via... Critical Unreviewed

CVE-2023-34566 was published Jun 8, 2023

The Abandoned Cart Lite for WooCommerce plugin for WordPress is vulnerable to authentication... Critical Unreviewed

CVE-2023-2986 was published Jun 8, 2023

IBM Sterling Partner Engagement Manager 6.1, 6.2, and 6.2.1 could allow a remote attacker to... Critical Unreviewed

CVE-2023-23482 was published Jun 8, 2023

RenderDoc through 1.26 allows an Integer Overflow with a resultant Buffer Overflow (issue 1 of 2). Critical Unreviewed

CVE-2023-33863 was published Jun 7, 2023

RenderDoc through 1.26 allows an Integer Overflow with a resultant Buffer Overflow (issue 2 of 2). Critical Unreviewed

CVE-2023-33864 was published Jun 7, 2023

An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. An... Critical Unreviewed

CVE-2023-31116 was published Jun 7, 2023

An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300.... Critical Unreviewed

CVE-2023-31114 was published Jun 7, 2023

Previous 1…397…400 Next

Previous 1 2 … 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

25,562 advisories