GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
93,441 advisories
Filter by severity
Apache Tomcat - Fix for CVE-2023-24998 was incomplete
High
CVE-2023-28709
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
Jul 6, 2023
A use-after-free in BigIntPrimitive addition in Hermes prior to commit...
High
Unreviewed
CVE-2023-24833
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Lucian Apostol Auto Affiliate Links plugin <=...
High
Unreviewed
CVE-2023-22689
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Atif N SRS Simple Hits Counter plugin <= 1.1.0...
High
Unreviewed
CVE-2023-22709
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Coming Soon by Supsystic plugin <= 1...
High
Unreviewed
CVE-2023-22714
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Thomas Belser Asgaros Forum plugin <= 2.2.0...
High
Unreviewed
CVE-2022-41608
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in WebMat Flexible Elementor Panel plugin <= 2.3...
High
Unreviewed
CVE-2022-45076
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Ramon Fincken Auto Prune Posts plugin <= 1.8.0...
High
Unreviewed
CVE-2023-27423
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Ramon Fincken Mass Delete Unused Tags plugin <...
High
Unreviewed
CVE-2023-27430
was published
Jul 6, 2023
Compiler removal of buffer clearing in
sli_se_sign_hash in Silicon Labs Gecko Platform...
High
Unreviewed
CVE-2023-32099
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in LJ Apps WP Airbnb Review Slider plugin <= 3.2...
High
Unreviewed
CVE-2023-23890
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Joseph C Dolson My Calendar plugin <= 3.4.3...
High
Unreviewed
CVE-2023-23813
was published
Jul 6, 2023
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow...
High
Unreviewed
CVE-2023-30506
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Plugincraft Mediamatic – Media Library Folders...
High
Unreviewed
CVE-2022-47142
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Jeroen Peters Name Directory plugin <= 1.27.1...
High
Unreviewed
CVE-2023-22692
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Studio Wombat Shoppable Images plugin <= 1.2.3...
High
Unreviewed
CVE-2023-25698
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Bob Goetz WP-TopBar plugin <= 5.36 versions.
High
Unreviewed
CVE-2023-23680
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in User Meta Manager plugin <= 3.4.9 versions.
High
Unreviewed
CVE-2023-23712
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Bill Erickson Gallery Metabox plugin <= 1.5...
High
Unreviewed
CVE-2022-47134
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Abdul Ibad WP Tabs Slides plugin <= 2.0.3...
High
Unreviewed
CVE-2023-22688
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Nicearma DNUI plugin <= 2.8.1 versions.
High
Unreviewed
CVE-2022-47609
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in PingOnline Dyslexiefont Free plugin <= 1.0.0...
High
Unreviewed
CVE-2023-32589
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs...
High
Unreviewed
CVE-2023-24414
was published
Jul 6, 2023
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow...
High
Unreviewed
CVE-2023-30505
was published
Jul 6, 2023
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow...
High
Unreviewed
CVE-2023-30502
was published
Jul 6, 2023
ProTip!
Advisories are also available from the
GraphQL API