Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

97,169 advisories

Loading
Memory Corruption in Core due to secure memory access by user while loading modem image. High Unreviewed
CVE-2023-24852 was published Nov 14, 2023
Memory Corruption in Core during syscall for Sectools Fuse comparison feature. High Unreviewed
CVE-2023-21671 was published Nov 14, 2023
Label Studio Object Relational Mapper Leak Vulnerability in Filtering Task High
CVE-2023-47117 was published for label-studio (pip) Nov 14, 2023
alex-elttam
Northern.tech CFEngine Enterprise before 3.21.3 allows SQL Injection. The fixed versions are 3.18... High Unreviewed
CVE-2023-45684 was published Nov 14, 2023
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be... High Unreviewed
CVE-2023-6111 was published Nov 14, 2023
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability... High Unreviewed
CVE-2023-48021 was published Nov 14, 2023
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability... High Unreviewed
CVE-2023-48020 was published Nov 14, 2023
A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All versions < V4.5), SCALANCE... High Unreviewed
CVE-2023-44317 was published Nov 14, 2023
A vulnerability has been identified in SIMATIC PCS neo (All versions < V4.1). When accessing the... High Unreviewed
CVE-2023-46098 was published Nov 14, 2023
A vulnerability has been identified in Siemens OPC UA Modelling Editor (SiOME) (All versions < V2... High Unreviewed
CVE-2023-46590 was published Nov 14, 2023
A local non-privileged user can make improper GPU memory processing operations. If the operations... High Unreviewed
CVE-2023-3889 was published Nov 14, 2023
An out-of-bounds write vulnerability exists in the HTTP Server functionality of Weston Embedded... High Unreviewed
CVE-2023-24585 was published Nov 14, 2023
GibbonEdu Gibbon through version 25.0.0 allows Directory Traversal via the report template... High Unreviewed
CVE-2023-45880 was published Nov 14, 2023
SQL injection vulnerability in OSS Calendar versions prior to v.2.0.3 allows a remote... High Unreviewed
CVE-2023-47609 was published Nov 14, 2023
An issue in Netgate pfSense v.2.7.0 allows a remote attacker to execute arbitrary code via a... High Unreviewed
CVE-2023-42326 was published Nov 14, 2023
An issue in Yasukawa memberscard v.13.6.1 allows attackers to send crafted notifications via... High Unreviewed
CVE-2023-45560 was published Nov 14, 2023
An issue in Golden v.13.6.1 allows attackers to send crafted notifications via leakage of the... High Unreviewed
CVE-2023-45558 was published Nov 14, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Stefano Ottolenghi Post Pay Counter... High Unreviewed
CVE-2023-47673 was published Nov 14, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in edward_plainview Plainview Protect... High Unreviewed
CVE-2023-47665 was published Nov 14, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ThemePunch OHG Essential Grid... High Unreviewed
CVE-2023-47684 was published Nov 14, 2023
Buffer Overflow vulnerability in free5gc 3.3.0, UPF 1.2.0, and SMF 1.2.0 allows attackers to... High Unreviewed
CVE-2023-47346 was published Nov 14, 2023
Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Gravity Master Product Enquiry for... High Unreviewed
CVE-2023-47696 was published Nov 14, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WP Event Manager WP Event Manager –... High Unreviewed
CVE-2023-47697 was published Nov 14, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Scribit Shortcodes Finder plugin <=... High Unreviewed
CVE-2023-47695 was published Nov 14, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Anton Bond Additional Order Filters... High Unreviewed
CVE-2023-47690 was published Nov 14, 2023
ProTip! Advisories are also available from the GraphQL API