GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
90,148 advisories
Filter by severity
Cross-Site Request Forgery (CSRF) vulnerability in WP Doctor WooCommerce Login Redirect plugin <=...
High
Unreviewed
CVE-2023-44995
was published
Oct 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Naresh Parmar Post View Count plugin <= 1.8.2...
High
Unreviewed
CVE-2023-44996
was published
Oct 10, 2023
A buffer overflow in Macrium Reflect 8.1.7544 and below allows attackers to escalate privileges...
High
Unreviewed
CVE-2023-43896
was published
Oct 10, 2023
An insufficient verification of data vulnerability exists in BIG-IP Edge Client Installer on...
High
Unreviewed
CVE-2023-5450
was published
Oct 10, 2023
The BIG-IP SPK TMM (Traffic Management Module) f5-debug-sidecar and f5-debug-sshd containers...
High
Unreviewed
CVE-2023-45226
was published
Oct 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Andres Felipe Perea V. CopyRightPro plugin <=...
High
Unreviewed
CVE-2023-44476
was published
Oct 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Bainternet ShortCodes UI plugin <= 1.9.8...
High
Unreviewed
CVE-2023-44994
was published
Oct 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Keap Keap Landing Pages plugin <= 1.4.2 versions.
High
Unreviewed
CVE-2023-44241
was published
Oct 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Michael Simpson Add Shortcodes Actions And...
High
Unreviewed
CVE-2023-44475
was published
Oct 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Kvvaradha Kv TinyMCE Editor Add Fonts plugin <...
High
Unreviewed
CVE-2023-44470
was published
Oct 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Bernhard Kau Backend Localization plugin <= 2...
High
Unreviewed
CVE-2023-44471
was published
Oct 10, 2023
Information exposure vulnerability in Shenzhen Reachfar v28, the exploitation of which could...
High
Unreviewed
CVE-2023-5499
was published
Oct 10, 2023
When IPSec is configured on a Virtual Server, undisclosed traffic can cause TMM to terminate.
...
High
Unreviewed
CVE-2023-41085
was published
Oct 10, 2023
When a non-admin user has been assigned an administrator role via an iControl REST PUT request...
High
Unreviewed
CVE-2023-42768
was published
Oct 10, 2023
The BIG-IP Edge Client Installer on macOS does not follow best practices for elevating...
High
Unreviewed
CVE-2023-43611
was published
Oct 10, 2023
An authenticated user's session cookie may remain valid for a limited time after logging out...
High
Unreviewed
CVE-2023-40537
was published
Oct 10, 2023
When a client-side HTTP/2 profile and the HTTP MRF Router option are enabled for a virtual server...
High
Unreviewed
CVE-2023-40534
was published
Oct 10, 2023
When TCP Verified Accept is enabled on a TCP profile that is configured on a Virtual Server,...
High
Unreviewed
CVE-2023-40542
was published
Oct 10, 2023
When running in Appliance mode, an authenticated user assigned the Administrator role may be...
High
Unreviewed
CVE-2023-43746
was published
Oct 10, 2023
A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function...
High
Unreviewed
CVE-2023-43787
was published
Oct 10, 2023
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.11), CP...
High
Unreviewed
CVE-2023-42796
was published
Oct 10, 2023
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201...
High
Unreviewed
CVE-2023-44084
was published
Oct 10, 2023
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201...
High
Unreviewed
CVE-2023-44083
was published
Oct 10, 2023
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201...
High
Unreviewed
CVE-2023-44087
was published
Oct 10, 2023
A vulnerability has been identified in Parasolid V35.0 (All versions < V35.0.262), Parasolid V35...
High
Unreviewed
CVE-2023-45601
was published
Oct 10, 2023
ProTip!
Advisories are also available from the
GraphQL API