GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
86,754 advisories
Filter by severity
Use of Hard-coded Password vulnerability in FTP function on Mitsubishi Electric Corporation...
High
Unreviewed
CVE-2023-2061
was published
Jun 2, 2023
Unrestricted Upload of File with Dangerous Type vulnerability in FTP function on Mitsubishi...
High
Unreviewed
CVE-2023-2063
was published
Jun 2, 2023
The BT21 x BTS Wallpaper app 12 for Android allows unauthorized apps to actively request...
High
Unreviewed
CVE-2023-29724
was published
Jun 2, 2023
An issue was discovered in South River Technologies TitanFTP NextGen server that allows for a...
High
Unreviewed
CVE-2023-27744
was published
Jun 2, 2023
An issue in South River Technologies TitanFTP Before v2.0.1.2102 allows attackers with low-level...
High
Unreviewed
CVE-2023-27745
was published
Jun 2, 2023
Weak Password Requirements vulnerability in FTP function on Mitsubishi Electric Corporation...
High
Unreviewed
CVE-2023-2060
was published
Jun 2, 2023
The Glitter Unicorn Wallpaper app for Android 7.0 thru 8.0 allows unauthorized applications to...
High
Unreviewed
CVE-2023-29723
was published
Jun 1, 2023
An issue was discovered in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for...
High
Unreviewed
CVE-2023-27639
was published
Jun 1, 2023
An issue was discovered in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for...
High
Unreviewed
CVE-2023-27640
was published
Jun 1, 2023
Dell OS Recovery Tool, versions 2.2.4013 and 2.3.7012.0, contain an Improper Access Control...
High
Unreviewed
CVE-2023-28066
was published
Jun 1, 2023
In the Splunk App for Lookup File Editing versions below 4.0.1, a low-privileged user can, with a...
High
Unreviewed
CVE-2023-32714
was published
Jun 1, 2023
Heap Buffer Overflow in the erofsfsck_dirent_iter function in fsck/main.c in erofs-utils v1.6...
High
Unreviewed
CVE-2023-33551
was published
Jun 1, 2023
Heap Buffer Overflow in the erofs_read_one_data function at data.c in erofs-utils v1.6 allows...
High
Unreviewed
CVE-2023-33552
was published
Jun 1, 2023
In Tencent QQ through 9.7.8.29039 and TIM through 3.4.7.22084, QQProtect.exe and QQProtectEngine...
High
Unreviewed
CVE-2023-34312
was published
Jun 1, 2023
Story Saver for Instragram - Video Downloader 1.0.6 for Android has an exposed component that...
High
Unreviewed
CVE-2023-29748
was published
Jun 1, 2023
SQL injection vulnerability exists in the CONPROSYS HMI System (CHS) versions prior to 3.5.3. A...
High
Unreviewed
CVE-2023-29154
was published
Jun 1, 2023
Improper access control vulnerability exists in CONPROSYS HMI System (CHS) versions prior to 3.5...
High
Unreviewed
CVE-2023-28657
was published
Jun 1, 2023
DataSpider Servista version 4.4 and earlier uses a hard-coded cryptographic key. DataSpider...
High
Unreviewed
CVE-2023-28937
was published
Jun 1, 2023
A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in...
High
Unreviewed
CVE-2023-2977
was published
Jun 1, 2023
Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to...
High
Unreviewed
CVE-2023-23953
was published
Jun 1, 2023
Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to...
High
Unreviewed
CVE-2023-23955
was published
Jun 1, 2023
Microsoft Outlook Denial of Service Vulnerability
High
Unreviewed
CVE-2022-35742
was published
Jun 1, 2023
Incorrect permission assignment for critical resource exists in CONPROSYS HMI System (CHS)...
High
Unreviewed
CVE-2023-28399
was published
Jun 1, 2023
Plaintext storage of a password exists in CONPROSYS HMI System (CHS) versions prior to 3.5.3....
High
Unreviewed
CVE-2023-28713
was published
Jun 1, 2023
A flaw was found in the fixed buffer registration code for io_uring (io_sqe_buffer_register in...
High
Unreviewed
CVE-2023-2598
was published
Jun 1, 2023
ProTip!
Advisories are also available from the
GraphQL API