GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
86,754 advisories
Filter by severity
Windows Digital Media Receiver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2022-35746
was published
May 31, 2023
Windows Digital Media Receiver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2022-35749
was published
May 31, 2023
Windows Hyper-V Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2022-35751
was published
May 31, 2023
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2022-35753
was published
May 31, 2023
IBM QRadar WinCollect Agent 10.0 though 10.1.3 could allow a local user to execute commands on...
High
Unreviewed
CVE-2023-26277
was published
May 31, 2023
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2022-35752
was published
May 31, 2023
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2022-35757
was published
May 31, 2023
EDIMAX BR-6288ACL v1.12 was discovered to contain an authenticated remote code execution (RCE)...
High
Unreviewed
CVE-2023-33722
was published
May 31, 2023
An issue was discovered in the Linux kernel before 6.2. The ntfs3 subsystem does not properly...
High
Unreviewed
CVE-2022-48502
was published
May 31, 2023
In JetBrains TeamCity before 2023.05 a specific endpoint was vulnerable to brute force attacks
High
Unreviewed
CVE-2023-34227
was published
May 31, 2023
TOTOLINK X5000R V9.1.0u.6118_B20201102 and V9.1.0u.6369_B20230113 contains a post-authentication...
High
Unreviewed
CVE-2023-33485
was published
May 31, 2023
An issue in Deviniti Issue Sync Synchronization v3.5.2 for Jira allows attackers to obtain the...
High
Unreviewed
CVE-2023-30285
was published
May 31, 2023
A vulnerability classified as critical has been found in ningzichun Student Management System 1.0...
High
Unreviewed
CVE-2023-3008
was published
May 31, 2023
Download Center fails to properly validate the file path submitted by a user, An attacker can...
High
Unreviewed
CVE-2023-2749
was published
May 31, 2023
The Feather Login Page plugin for WordPress is vulnerable to unauthorized access of data due to a...
High
Unreviewed
CVE-2023-2545
was published
May 31, 2023
The Feather Login Page plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
High
Unreviewed
CVE-2023-2549
was published
May 31, 2023
Incorrect Access Control in the module "My inventory" (myinventory) <= 1.6.6 from Webbax for...
High
Unreviewed
CVE-2023-30197
was published
May 31, 2023
SQL Injection vulnerability found in Fighting Cock Information System v.1.0 allows a remote...
High
Unreviewed
CVE-2021-31233
was published
May 31, 2023
The Call Blocker application 6.6.3 for Android incorrectly opens a key component that an attacker...
High
Unreviewed
CVE-2023-29726
was published
May 31, 2023
An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for a remote...
High
Unreviewed
CVE-2023-28346
was published
May 31, 2023
An issue was discovered in Faronics Insight 10.0.19045 on Windows. By abusing the Insight UDP...
High
Unreviewed
CVE-2023-28352
was published
May 31, 2023
There is an unauthorized access vulnerability in some ZTE mobile phones. If a malicious...
High
Unreviewed
CVE-2022-39071
was published
May 31, 2023
There is an unauthorized access vulnerability in some ZTE mobile phones. If a malicious...
High
Unreviewed
CVE-2022-39075
was published
May 31, 2023
Fox-IT DataDiode (aka Fox DataDiode) 3.4.3 suffers from a Divide-by-Zero vulnerability in the...
High
Unreviewed
CVE-2022-47525
was published
May 31, 2023
ProTip!
Advisories are also available from the
GraphQL API