GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
640 advisories
Filter by severity
Deserialization of untrusted data in Microsoft Messaging Queuing Service in Medtronic's Paceart...
High
Unreviewed
CVE-2023-31222
was published
Jun 29, 2023
In run of multiple files, there is a possible escalation of privilege due to unsafe...
High
Unreviewed
CVE-2023-21124
was published
Jun 15, 2023
A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that...
High
Unreviewed
CVE-2023-3001
was published
Jun 14, 2023
An issue found in MIM software Inc MIM License Server and MIMpacs services v.6.9 thru v.7.0 fixed...
High
Unreviewed
CVE-2023-30262
was published
Jun 9, 2023
Marval MSM through 14.19.0.12476 and 15.0 has a Remote Code Execution vulnerability. A remote...
High
Unreviewed
CVE-2023-33284
was published
Jun 7, 2023
The Otter WordPress plugin before 2.2.6 does not sanitize some user-controlled file paths before...
High
Unreviewed
CVE-2023-2288
was published
May 30, 2023
The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress is vulnerable to PHP...
High
Unreviewed
CVE-2023-2500
was published
May 25, 2023
The Ad Inserter WordPress plugin before 2.7.27 unserializes user input provided via the settings,...
High
Unreviewed
CVE-2023-1549
was published
May 15, 2023
VMware Aria Operations contains a deserialization vulnerability. A malicious actor with...
High
Unreviewed
CVE-2023-20878
was published
May 12, 2023
A vulnerability has been identified in Siveillance Video 2020 R2 (All versions < V20.2...
High
Unreviewed
CVE-2023-30898
was published
May 9, 2023
A vulnerability has been identified in Siveillance Video 2020 R2 (All versions < V20.2...
High
Unreviewed
CVE-2023-30899
was published
May 9, 2023
The Customizer Export/Import WordPress plugin before 0.9.6 unserializes user input provided via...
High
Unreviewed
CVE-2023-1347
was published
May 8, 2023
The Advanced Custom Fields (ACF) Free and Pro WordPress plugins 6.x before 6.1.0 and 5.x before 5...
High
Unreviewed
CVE-2023-1196
was published
May 2, 2023
The SEOPress WordPress plugin before 6.5.0.3 unserializes user input provided via the settings,...
High
Unreviewed
CVE-2023-1669
was published
May 2, 2023
An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could...
High
Unreviewed
CVE-2023-2141
was published
Apr 21, 2023
TylerTech Eagle 2018.3.11 deserializes untrusted user input, resulting in remote code execution...
High
Unreviewed
CVE-2019-16112
was published
May 24, 2022
Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated...
High
Unreviewed
CVE-2020-5741
was published
May 24, 2022
An attacker who has already compromised the local system could use TinyWall Controller to gain...
High
Unreviewed
CVE-2019-19470
was published
May 24, 2022
An issue was discovered in Public Knowledge Project (PKP) pkp-lib before 3.1.2-2, as used in Open...
High
Unreviewed
CVE-2019-19909
was published
May 24, 2022
OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to denial of service from unserialized data...
High
Unreviewed
CVE-2019-18601
was published
May 24, 2022
mintinstall (aka Software Manager) 7.9.9 for Linux Mint allows code execution if a REVIEWS_CACHE...
High
Unreviewed
CVE-2019-17080
was published
May 24, 2022
Insecure deserialization of untrusted data in Micro Focus Service Manager product versions 9.30,...
High
Unreviewed
CVE-2019-11666
was published
May 24, 2022
Sitecore Experience Platform (XP) prior to 9.1.1 is vulnerable to remote code execution via...
High
Unreviewed
CVE-2019-11080
was published
May 24, 2022
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC)...
High
Unreviewed
CVE-2019-5350
was published
May 24, 2022
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC)...
High
Unreviewed
CVE-2019-11956
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API