Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

97,169 advisories

Loading
Arbitrary File Descriptor Write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1... High Unreviewed
CVE-2023-30739 was published Nov 13, 2023
Videolan VLC prior to version 3.0.20 contains an Integer underflow that leads to an incorrect... High Unreviewed
CVE-2023-47360 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Haoqisir Baidu Tongji generator allows Stored... High Unreviewed
CVE-2023-31230 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in tagDiv tagDiv Composer allows Cross-Site... High Unreviewed
CVE-2023-39166 was published Nov 13, 2023
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the... High Unreviewed
CVE-2023-48058 was published Nov 13, 2023
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the... High Unreviewed
CVE-2023-48060 was published Nov 13, 2023
Improper Certificate Validation in FotaAgent prior to SMR Nov-2023 Release1 allows remote... High Unreviewed
CVE-2023-42532 was published Nov 13, 2023
Out-of-bounds Write in read_block of vold prior to SMR Nov-2023 Release 1 allows local attacker... High Unreviewed
CVE-2023-42535 was published Nov 13, 2023
Improper access control vulnerability in SecSettings prior to SMR Nov-2023 Release 1 allows... High Unreviewed
CVE-2023-42530 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Vadym K. Extra User Details allows Stored XSS... High Unreviewed
CVE-2023-35877 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Dream-Theme The7 allows Stored XSS.This issue... High Unreviewed
CVE-2023-32123 was published Nov 13, 2023
A vulnerability classified as critical has been found in Shenzhen Youkate Industrial Facial Love... High Unreviewed
CVE-2023-6099 was published Nov 13, 2023
Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023... High Unreviewed
CVE-2023-42528 was published Nov 13, 2023
Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local... High Unreviewed
CVE-2023-42529 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in LionScripts.Com Webmaster Tools allows Stored... High Unreviewed
CVE-2023-46092 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Jeremy O'Connell Cleverwise Daily Quotes... High Unreviewed
CVE-2023-40335 was published Nov 13, 2023
Rejected reason: CVE number will be reassigned. High Unreviewed
CVE-2023-5037 was published Nov 13, 2023
Bashis, a Security Researcher at IPVM has found a flaw that allows for a remote code execution... High Unreviewed
CVE-2023-5747 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Stark Digital Category Post List Widget allows... High Unreviewed
CVE-2023-47516 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Lucian Apostol Auto Affiliate Links allows... High Unreviewed
CVE-2023-47652 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Jeff Sherk Auto Login New User After... High Unreviewed
CVE-2023-46201 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in phoeniixx Custom My Account for Woocommerce... High Unreviewed
CVE-2023-46634 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability leading to Local File Inclusion (LF) in Webpushr... High Unreviewed
CVE-2023-35041 was published Nov 13, 2023
Remarshal expands YAML alias nodes unlimitedly, hence Remarshal is vulnerable to Billion Laughs Attack High
CVE-2023-47163 was published for remarshal (pip) Nov 13, 2023
Server-Side Request Forgery (SSRF) vulnerability in Vova Anokhin WP Shortcodes Plugin —... High Unreviewed
CVE-2023-23800 was published Nov 13, 2023
ProTip! Advisories are also available from the GraphQL API