Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

93,441 advisories

Loading
Apache Tomcat - Fix for CVE-2023-24998 was incomplete High
CVE-2023-28709 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jul 6, 2023
westonsteimel
A use-after-free in BigIntPrimitive addition in Hermes prior to commit... High Unreviewed
CVE-2023-24833 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Lucian Apostol Auto Affiliate Links plugin <=... High Unreviewed
CVE-2023-22689 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Atif N SRS Simple Hits Counter plugin <= 1.1.0... High Unreviewed
CVE-2023-22709 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Coming Soon by Supsystic plugin <= 1... High Unreviewed
CVE-2023-22714 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Thomas Belser Asgaros Forum plugin <= 2.2.0... High Unreviewed
CVE-2022-41608 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in WebMat Flexible Elementor Panel plugin <= 2.3... High Unreviewed
CVE-2022-45076 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Ramon Fincken Auto Prune Posts plugin <= 1.8.0... High Unreviewed
CVE-2023-27423 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Ramon Fincken Mass Delete Unused Tags plugin <... High Unreviewed
CVE-2023-27430 was published Jul 6, 2023
Compiler removal of buffer clearing in sli_se_sign_hash in Silicon Labs Gecko Platform... High Unreviewed
CVE-2023-32099 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in LJ Apps WP Airbnb Review Slider plugin <= 3.2... High Unreviewed
CVE-2023-23890 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Joseph C Dolson My Calendar plugin <= 3.4.3... High Unreviewed
CVE-2023-23813 was published Jul 6, 2023
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow... High Unreviewed
CVE-2023-30506 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Plugincraft Mediamatic – Media Library Folders... High Unreviewed
CVE-2022-47142 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Jeroen Peters Name Directory plugin <= 1.27.1... High Unreviewed
CVE-2023-22692 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Studio Wombat Shoppable Images plugin <= 1.2.3... High Unreviewed
CVE-2023-25698 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Bob Goetz WP-TopBar plugin <= 5.36 versions. High Unreviewed
CVE-2023-23680 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in User Meta Manager plugin <= 3.4.9 versions. High Unreviewed
CVE-2023-23712 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Bill Erickson Gallery Metabox plugin <= 1.5... High Unreviewed
CVE-2022-47134 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Abdul Ibad WP Tabs Slides plugin <= 2.0.3... High Unreviewed
CVE-2023-22688 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Nicearma DNUI plugin <= 2.8.1 versions. High Unreviewed
CVE-2022-47609 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in PingOnline Dyslexiefont Free plugin <= 1.0.0... High Unreviewed
CVE-2023-32589 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs... High Unreviewed
CVE-2023-24414 was published Jul 6, 2023
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow... High Unreviewed
CVE-2023-30505 was published Jul 6, 2023
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow... High Unreviewed
CVE-2023-30502 was published Jul 6, 2023
ProTip! Advisories are also available from the GraphQL API