GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
86,720 advisories
Filter by severity
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin...
High
Unreviewed
CVE-2023-33439
was published
May 26, 2023
The SDK for the MediaPlaybackController module has improper permission verification. Successful...
High
Unreviewed
CVE-2023-31226
was published
May 26, 2023
The hwPartsDFR module has a vulnerability in API calling verification. Successful exploitation of...
High
Unreviewed
CVE-2023-31227
was published
May 26, 2023
Integer overflow vulnerability in some phones. Successful exploitation of this vulnerability may...
High
Unreviewed
CVE-2022-48480
was published
May 26, 2023
The reminder module lacks an authentication mechanism for broadcasts received. Successful...
High
Unreviewed
CVE-2023-0116
was published
May 26, 2023
The video framework has memory overwriting caused by addition overflow. Successful exploitation...
High
Unreviewed
CVE-2021-46884
was published
May 26, 2023
The video framework has memory overwriting caused by addition overflow. Successful exploitation...
High
Unreviewed
CVE-2021-46881
was published
May 26, 2023
Bottles before 51.0 mishandles YAML load, which allows remote code execution via a crafted file.
High
Unreviewed
CVE-2023-22970
was published
May 26, 2023
The video framework has memory overwriting caused by addition overflow. Successful exploitation...
High
Unreviewed
CVE-2021-46886
was published
May 26, 2023
The video framework has memory overwriting caused by addition overflow. Successful exploitation...
High
Unreviewed
CVE-2021-46885
was published
May 26, 2023
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval...
High
Unreviewed
CVE-2023-33440
was published
May 26, 2023
The video framework has memory overwriting caused by addition overflow. Successful exploitation...
High
Unreviewed
CVE-2021-46882
was published
May 26, 2023
The video framework has memory overwriting caused by addition overflow. Successful exploitation...
High
Unreviewed
CVE-2021-46883
was published
May 26, 2023
Directory traversal vulnerability in ESS REC Agent Server Edition series allows an authenticated...
High
Unreviewed
CVE-2023-28382
was published
May 26, 2023
Improper Validation of Array Index vulnerability in the spreadsheet component of The Document...
High
Unreviewed
CVE-2023-0950
was published
May 25, 2023
The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an exploitable...
High
Unreviewed
CVE-2023-26216
was published
May 25, 2023
In WFTPD 3.25, usernames and password hashes are stored in an openly viewable wftpd.ini...
High
Unreviewed
CVE-2023-33263
was published
May 25, 2023
Missing access permissions checks in M-Files Client before 23.5.12598.0 allows elevation of...
High
Unreviewed
CVE-2023-2480
was published
May 25, 2023
IceCMS v1.0.0 has Insecure Permissions. There is unauthorized access to the API, resulting in the...
High
Unreviewed
CVE-2023-33355
was published
May 25, 2023
Wacom Tablet Driver installer prior to 6.4.2-1 (for macOS) contains an improper link resolution...
High
Unreviewed
CVE-2023-27529
was published
May 25, 2023
Authorization Bypass Through User-Controlled Key vulnerability in CBOT Chatbot allows...
High
Unreviewed
CVE-2023-2883
was published
May 25, 2023
Channel Accessible by Non-Endpoint vulnerability in CBOT Chatbot allows Adversary in the Middle ...
High
Unreviewed
CVE-2023-2885
was published
May 25, 2023
IC Realtime ICIP-P2012T 2.420 is vulnerable to Incorrect Access Control via an exposed HTTP...
High
Unreviewed
CVE-2023-31594
was published
May 25, 2023
ZLMediaKit 4.0 is vulnerable to Directory Traversal.
High
Unreviewed
CVE-2023-31861
was published
May 25, 2023
The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress is vulnerable to PHP...
High
Unreviewed
CVE-2023-2500
was published
May 25, 2023
ProTip!
Advisories are also available from the
GraphQL API