GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
97,169 advisories
Filter by severity
Arbitrary File Descriptor Write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1...
High
Unreviewed
CVE-2023-30739
was published
Nov 13, 2023
Videolan VLC prior to version 3.0.20 contains an Integer underflow that leads to an incorrect...
High
Unreviewed
CVE-2023-47360
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Haoqisir Baidu Tongji generator allows Stored...
High
Unreviewed
CVE-2023-31230
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in tagDiv tagDiv Composer allows Cross-Site...
High
Unreviewed
CVE-2023-39166
was published
Nov 13, 2023
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the...
High
Unreviewed
CVE-2023-48058
was published
Nov 13, 2023
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the...
High
Unreviewed
CVE-2023-48060
was published
Nov 13, 2023
Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote...
High
Unreviewed
CVE-2023-42532
was published
Nov 13, 2023
Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker...
High
Unreviewed
CVE-2023-42535
was published
Nov 13, 2023
Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows...
High
Unreviewed
CVE-2023-42530
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Vadym K. Extra User Details allows Stored XSS...
High
Unreviewed
CVE-2023-35877
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Dream-Theme The7 allows Stored XSS.This issue...
High
Unreviewed
CVE-2023-32123
was published
Nov 13, 2023
A vulnerability classified as critical has been found in Shenzhen Youkate Industrial Facial Love...
High
Unreviewed
CVE-2023-6099
was published
Nov 13, 2023
Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023...
High
Unreviewed
CVE-2023-42528
was published
Nov 13, 2023
Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local...
High
Unreviewed
CVE-2023-42529
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in LionScripts.Com Webmaster Tools allows Stored...
High
Unreviewed
CVE-2023-46092
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Jeremy O'Connell Cleverwise Daily Quotes...
High
Unreviewed
CVE-2023-40335
was published
Nov 13, 2023
Rejected reason: CVE number will be reassigned.
High
Unreviewed
CVE-2023-5037
was published
Nov 13, 2023
Bashis, a Security Researcher at IPVM has found a flaw that allows for a remote code execution...
High
Unreviewed
CVE-2023-5747
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Stark Digital Category Post List Widget allows...
High
Unreviewed
CVE-2023-47516
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Lucian Apostol Auto Affiliate Links allows...
High
Unreviewed
CVE-2023-47652
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Jeff Sherk Auto Login New User After...
High
Unreviewed
CVE-2023-46201
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in phoeniixx Custom My Account for Woocommerce...
High
Unreviewed
CVE-2023-46634
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability leading to Local File Inclusion (LF) in Webpushr...
High
Unreviewed
CVE-2023-35041
was published
Nov 13, 2023
Remarshal expands YAML alias nodes unlimitedly, hence Remarshal is vulnerable to Billion Laughs Attack
High
CVE-2023-47163
was published
for
remarshal
(pip)
Nov 13, 2023
Server-Side Request Forgery (SSRF) vulnerability in Vova Anokhin WP Shortcodes Plugin —...
High
Unreviewed
CVE-2023-23800
was published
Nov 13, 2023
ProTip!
Advisories are also available from the
GraphQL API