GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
93,441 advisories
Filter by severity
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow...
High
Unreviewed
CVE-2023-30504
was published
Jul 6, 2023
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in...
High
Unreviewed
CVE-2022-47380
was published
Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the...
High
Unreviewed
CVE-2022-47383
was published
Jul 6, 2023
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the...
High
Unreviewed
CVE-2022-47382
was published
Jul 6, 2023
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the...
High
Unreviewed
CVE-2022-47384
was published
Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the...
High
Unreviewed
CVE-2022-47390
was published
Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the...
High
Unreviewed
CVE-2022-47386
was published
Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the...
High
Unreviewed
CVE-2022-47385
was published
Jul 6, 2023
An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS...
High
Unreviewed
CVE-2022-47379
was published
Jul 6, 2023
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in...
High
Unreviewed
CVE-2022-47381
was published
Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the...
High
Unreviewed
CVE-2022-47389
was published
Jul 6, 2023
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the...
High
Unreviewed
CVE-2022-47387
was published
Jul 6, 2023
Cleartext Storage of Sensitive Information in SICK FTMg AIR FLOW SENSOR with
Partnumbers 1100214...
High
Unreviewed
CVE-2023-31408
was published
Jul 6, 2023
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow...
High
Unreviewed
CVE-2023-30501
was published
Jul 6, 2023
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow...
High
Unreviewed
CVE-2023-30503
was published
Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the...
High
Unreviewed
CVE-2022-47388
was published
Jul 6, 2023
Mattermost Sever fails to redact the DB username and password before emitting an application log...
High
Unreviewed
CVE-2023-2514
was published
Jul 6, 2023
Rockwell Automation ThinManager product allows the use of medium strength ciphers. If the...
High
Unreviewed
CVE-2023-2443
was published
Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Nickys Image Map Pro for WordPress -...
High
Unreviewed
CVE-2022-45846
was published
Jul 6, 2023
A cross site request forgery vulnerability exists in Rockwell Automation's FactoryTalk...
High
Unreviewed
CVE-2023-2444
was published
Jul 6, 2023
An Improper Input Validation vulnerability in the Schweitzer Engineering Laboratories Real-Time...
High
Unreviewed
CVE-2023-31161
was published
Jul 6, 2023
A buffer overflow vulnerability was discovered on firmware version validation that could lead to...
High
Unreviewed
CVE-2022-36330
was published
Jul 6, 2023
There is a cross-site-request forgery vulnerability in Esri Portal for ArcGIS Versions 11.0 and...
High
Unreviewed
CVE-2023-25832
was published
Jul 6, 2023
An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation...
High
Unreviewed
CVE-2023-29462
was published
Jul 6, 2023
Apache Ranger code execution vulnerability in policy expressions
High
CVE-2022-45048
was published
for
org.apache.ranger:ranger
(Maven)
Jul 6, 2023
ProTip!
Advisories are also available from the
GraphQL API