Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

93,441 advisories

Loading
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow... High Unreviewed
CVE-2023-30504 was published Jul 6, 2023
An authenticated remote attacker may use a stack based  out-of-bounds write vulnerability in... High Unreviewed
CVE-2022-47380 was published Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the... High Unreviewed
CVE-2022-47383 was published Jul 6, 2023
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the... High Unreviewed
CVE-2022-47382 was published Jul 6, 2023
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the... High Unreviewed
CVE-2022-47384 was published Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the... High Unreviewed
CVE-2022-47390 was published Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the... High Unreviewed
CVE-2022-47386 was published Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the... High Unreviewed
CVE-2022-47385 was published Jul 6, 2023
An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS... High Unreviewed
CVE-2022-47379 was published Jul 6, 2023
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in... High Unreviewed
CVE-2022-47381 was published Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the... High Unreviewed
CVE-2022-47389 was published Jul 6, 2023
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the... High Unreviewed
CVE-2022-47387 was published Jul 6, 2023
Cleartext Storage of Sensitive Information in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214... High Unreviewed
CVE-2023-31408 was published Jul 6, 2023
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow... High Unreviewed
CVE-2023-30501 was published Jul 6, 2023
Vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface that allow... High Unreviewed
CVE-2023-30503 was published Jul 6, 2023
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the... High Unreviewed
CVE-2022-47388 was published Jul 6, 2023
Mattermost Sever fails to redact the DB username and password before emitting an application log... High Unreviewed
CVE-2023-2514 was published Jul 6, 2023
Rockwell Automation ThinManager product allows the use of medium strength ciphers.  If the... High Unreviewed
CVE-2023-2443 was published Jul 6, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Nickys Image Map Pro for WordPress -... High Unreviewed
CVE-2022-45846 was published Jul 6, 2023
A cross site request forgery vulnerability exists in Rockwell Automation's FactoryTalk... High Unreviewed
CVE-2023-2444 was published Jul 6, 2023
An Improper Input Validation vulnerability in the Schweitzer Engineering Laboratories Real-Time... High Unreviewed
CVE-2023-31161 was published Jul 6, 2023
A buffer overflow vulnerability was discovered on firmware version validation that could lead to... High Unreviewed
CVE-2022-36330 was published Jul 6, 2023
There is a cross-site-request forgery vulnerability in Esri Portal for ArcGIS Versions 11.0 and... High Unreviewed
CVE-2023-25832 was published Jul 6, 2023
An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation... High Unreviewed
CVE-2023-29462 was published Jul 6, 2023
Apache Ranger code execution vulnerability in policy expressions High
CVE-2022-45048 was published for org.apache.ranger:ranger (Maven) Jul 6, 2023
ProTip! Advisories are also available from the GraphQL API