GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
97,391 advisories
Filter by severity
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The QMS.Mobile...
High
Unreviewed
CVE-2023-40727
was published
Sep 14, 2023
A vulnerability has been identified in QMS Automotive (All versions < V12.39). User credentials...
High
Unreviewed
CVE-2023-40724
was published
Sep 14, 2023
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The affected...
High
Unreviewed
CVE-2023-40726
was published
Sep 14, 2023
NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability...
High
Unreviewed
CVE-2023-25519
was published
Sep 14, 2023
Insecure default permissions in Wing FTP Server (Admin Web Client) allows for privilege...
High
Unreviewed
CVE-2023-37878
was published
Sep 14, 2023
Movim prior to version 0.22 is affected by a Cross-Site WebSocket Hijacking vulnerability. This...
High
Unreviewed
CVE-2023-2848
was published
Sep 14, 2023
A CWE-306: Missing Authentication for Critical Function vulnerability exists in the IGSS Update...
High
Unreviewed
CVE-2023-4516
was published
Sep 14, 2023
A vulnerability has been identified in Spectrum Power 7 (All versions < V23Q3). The affected...
High
Unreviewed
CVE-2023-38557
was published
Sep 14, 2023
Adobe ColdFusion versions 2018u18 (and earlier), 2021u8 (and earlier) and 2023u2 (and earlier)...
High
Unreviewed
CVE-2023-38205
was published
Sep 14, 2023
A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which...
High
Unreviewed
CVE-2023-4814
was published
Sep 14, 2023
An improper certification validation vulnerability in the Insider Threat Management (ITM) Agent...
High
Unreviewed
CVE-2023-4801
was published
Sep 13, 2023
A use of hard-coded credentials vulnerability [CWE-798] in FortiTester 2.3.0 through 7.2.3 may...
High
Unreviewed
CVE-2023-40717
was published
Sep 13, 2023
An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in...
High
Unreviewed
CVE-2023-36634
was published
Sep 13, 2023
A protection mechanism failure in Fortinet FortiWeb 7.2.0 through 7.2.1, 7.0.0 through 7.0.6, 6.4...
High
Unreviewed
CVE-2023-34984
was published
Sep 13, 2023
SAP BusinessObjects Suite Installer - version 420, 430, allows an attacker within the network to...
High
Unreviewed
CVE-2023-40623
was published
Sep 13, 2023
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in...
High
Unreviewed
CVE-2022-35849
was published
Sep 13, 2023
Due to insufficient file type validation, SAP BusinessObjects Business Intelligence Platform (Web...
High
Unreviewed
CVE-2023-42472
was published
Sep 13, 2023
The mod_jk component of Apache Tomcat Connectors in some circumstances, such as when a...
High
Unreviewed
CVE-2023-41081
was published
Sep 13, 2023
Acrobat Reader versions 23.003.20284 (and earlier), 20.005.30516 (and earlier) and 20.005.30514 ...
High
Unreviewed
CVE-2023-26369
was published
Sep 13, 2023
The Login with phone number plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
High
Unreviewed
CVE-2023-4916
was published
Sep 13, 2023
The BAN Users plugin for WordPress is vulnerable to privilege escalation in versions up to, and...
High
Unreviewed
CVE-2023-4153
was published
Sep 13, 2023
The Simplr Registration Form Plus+ plugin for WordPress is vulnerable to Insecure Direct Object...
High
Unreviewed
CVE-2023-4213
was published
Sep 13, 2023
Files or Directories Accessible to External Parties vulnerability in Honeywell PM43 on 32 bit,...
High
Unreviewed
CVE-2023-3712
was published
Sep 12, 2023
Session Fixation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows...
High
Unreviewed
CVE-2023-3711
was published
Sep 12, 2023
An SQL Injection vulnerability in the Management Console? (Operator Audit Trail) of BlackBerry...
High
Unreviewed
CVE-2023-21521
was published
Sep 12, 2023
ProTip!
Advisories are also available from the
GraphQL API