GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,417
Composer 4,951
Erlang 39
GitHub Actions 38
Go 2,607
Maven 6,062
npm 4,251
NuGet 757
pip 4,017
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,256

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

27,285 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM Informix JDBC Driver 4.10 and 4.50 is susceptible to remote code execution attack via JNDI... Critical Unreviewed

CVE-2023-27866 was published Jun 28, 2023

In Responsive Filemanager < 9.12.0, an attacker can bypass upload restrictions resulting in RCE. Critical Unreviewed

CVE-2022-44276 was published Jun 28, 2023

Directory traversal vulnerability in Snow Monkey Forms versions v5.1.0 and earlier allows a... Critical Unreviewed

CVE-2023-32623 was published Jun 28, 2023

Directory Traversal vulnerability found in Cryptoprof WCMS v.0.3.2 allows a remote attacker to... Critical Unreviewed

CVE-2020-19902 was published Jun 27, 2023

The wpbrutalai WordPress plugin before 2.0.0 does not properly sanitise and escape a parameter... Critical Unreviewed

CVE-2023-2601 was published Jun 27, 2023

The File Manager Advanced Shortcode WordPress plugin through 2.3.2 does not adequately prevent... Critical Unreviewed

CVE-2023-2068 was published Jun 27, 2023

The Custom 404 Pro WordPress plugin before 3.8.1 does not properly sanitize database inputs,... Critical Unreviewed

CVE-2023-2032 was published Jun 27, 2023

Multiple Services such as VHS(Video History Server) and VCD(Video Clip Distributor) and Clips2... Critical Unreviewed

CVE-2023-30945 was published Jun 27, 2023

A path traversal vulnerability in the Trend Micro Apex One and Apex One as a Service could allow... Critical Unreviewed

CVE-2023-32557 was published Jun 27, 2023

A path traversal exists in a specific service dll of Trend Micro Mobile Security (Enterprise) 9.8... Critical Unreviewed

CVE-2023-32521 was published Jun 27, 2023

An Unrestricted Upload vulnerability, due to insufficient validation on UploadControlled.cs file,... Critical Unreviewed

CVE-2023-33404 was published Jun 26, 2023

Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_verify_keys total_len... Critical Unreviewed

CVE-2022-48334 was published Jun 26, 2023

Widevine Trusted Application (TA) 5.0.0 through 7.1.1 has a PRDiagParseAndStoreData integer... Critical Unreviewed

CVE-2022-48336 was published Jun 26, 2023

Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_verify_keys prefix_len... Critical Unreviewed

CVE-2022-48333 was published Jun 26, 2023

Widevine Trusted Application (TA) 5.0.0 through 7.1.1 has a PRDiagVerifyProvisioning integer... Critical Unreviewed

CVE-2022-48335 was published Jun 26, 2023

Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_save_keys file_name_len integer... Critical Unreviewed

CVE-2022-48332 was published Jun 26, 2023

Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_save_keys feature_name_len... Critical Unreviewed

CVE-2022-48331 was published Jun 26, 2023

Command Injection vulnerability in OpenWB 1.6 and 1.7 allows remote attackers to run arbitrary... Critical Unreviewed

CVE-2023-30261 was published Jun 26, 2023

The MStore API plugin for WordPress is vulnerable to Unauthenticated Blind SQL Injection via the ... Critical Unreviewed

CVE-2023-3197 was published Jun 24, 2023

A use-after-free issue was addressed with improved memory management. This issue is fixed in... Critical Unreviewed

CVE-2023-32412 was published Jun 23, 2023

The issue was addressed with improved bounds checks. This issue is fixed in iOS 16.5 and iPadOS... Critical Unreviewed

CVE-2023-32419 was published Jun 23, 2023

Advantech R-SeeNet versions 2.4.22 is installed with a hidden root-level user that is not... Critical Unreviewed

CVE-2023-2611 was published Jun 22, 2023

pam_krb5 authenticates a user by essentially running kinit with the password, getting a ticket... Critical Unreviewed

CVE-2023-3326 was published Jun 22, 2023

A use-after-free issue was addressed with improved memory management. This issue is fixed in... Critical Unreviewed

CVE-2023-32387 was published Jun 23, 2023

A use after free issue was addressed with improved memory management. This issue is fixed in... Critical Unreviewed

CVE-2022-22630 was published Jun 23, 2023

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

27,285 advisories