GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
90,148 advisories
Filter by severity
Cross-Site Request Forgery (CSRF) vulnerability in Matias s Shockingly Simple Favicon plugin <= 1...
High
Unreviewed
CVE-2023-44246
was published
Oct 9, 2023
Mattermost fails to enforce a limit for the size of the cache entry for OpenGraph data allowing...
High
Unreviewed
CVE-2023-5330
was published
Oct 9, 2023
Sensitive information disclosure and manipulation due to missing authorization. The following...
High
Unreviewed
CVE-2023-45247
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Mikk Mihkel Nurges, Rebing OÜ Woocommerce ESTO...
High
Unreviewed
CVE-2023-44260
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Huseyin Berberoglu WP Hide Pages plugin <= 1.0...
High
Unreviewed
CVE-2023-44232
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in NickDuncan Contact Form plugin <= 2.0.10...
High
Unreviewed
CVE-2023-44231
was published
Oct 9, 2023
A Cross-Site Request Forgery (CSRF) vulnerability affecting Teamwork Cloud from No Magic Release...
High
Unreviewed
CVE-2023-3589
was published
Oct 9, 2023
An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1...
High
Unreviewed
CVE-2023-45371
was published
Oct 9, 2023
Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an...
High
Unreviewed
CVE-2023-45354
was published
Oct 9, 2023
Atos Unify OpenScape 4000 Platform V10 R1 before Hotfix V10 R1.42.2 4000 and Manager Platform V10...
High
Unreviewed
CVE-2023-45356
was published
Oct 9, 2023
Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an...
High
Unreviewed
CVE-2023-45353
was published
Oct 9, 2023
Atos Unify OpenScape 4000 Platform V10 R1 before Hotfix V10 R1.42.2 and 4000 and Manager Platform...
High
Unreviewed
CVE-2023-45355
was published
Oct 9, 2023
Atos Unify OpenScape Common Management Portal V10 before V10 R4.17.0 and V10 R5.1.0 allows an...
High
Unreviewed
CVE-2023-45352
was published
Oct 9, 2023
Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.34.7, 4000 Assistant V10 R1.42.0, 4000...
High
Unreviewed
CVE-2023-45349
was published
Oct 9, 2023
Atos Unify OpenScape 4000 Manager V10 R1 before V10 R1.42.1 and 4000 Manager V10 R0 allow...
High
Unreviewed
CVE-2023-45350
was published
Oct 9, 2023
Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.1, 4000 Assistant V10 R0, 4000...
High
Unreviewed
CVE-2023-45351
was published
Oct 9, 2023
An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x...
High
Unreviewed
CVE-2023-45363
was published
Oct 9, 2023
In jpg driver, there is a possible use after free due to a logic error. This could lead to remote...
High
Unreviewed
CVE-2023-40632
was published
Oct 8, 2023
In linkturbo, there is a possible missing permission check. This could lead to local escalation...
High
Unreviewed
CVE-2023-40635
was published
Oct 8, 2023
In phasechecksercer, there is a possible missing permission check. This could lead to local...
High
Unreviewed
CVE-2023-40634
was published
Oct 8, 2023
Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow.
High
Unreviewed
CVE-2023-43615
was published
Oct 7, 2023
IBM Security Directory Suite 8.0.1 uses weaker than expected cryptographic algorithms that could...
High
Unreviewed
CVE-2022-33160
was published
Oct 7, 2023
An issue in NETIS SYSTEMS N3Mv2 v.1.0.1.865 allows a remote attacker to cause a denial of service...
High
Unreviewed
CVE-2023-44860
was published
Oct 7, 2023
Directory Traversal vulnerability in Hex-Dragon Plain Craft Launcher 2 version Alpha 1.3.9,...
High
Unreviewed
CVE-2023-36123
was published
Oct 7, 2023
File Upload vulnerability in Simple and Nice Shopping Cart Script v.1.0 allows a remote attacker...
High
Unreviewed
CVE-2023-44061
was published
Oct 7, 2023
ProTip!
Advisories are also available from the
GraphQL API