GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
90,148 advisories
Filter by severity
Insecure Permissions vulnerability in Connectivity Standards Alliance Matter Official SDK v.1.1.0...
High
Unreviewed
CVE-2023-42189
was published
Oct 10, 2023
An issue in ZenTao Community Edition v.18.6 and before, ZenTao Biz v.8.6 and before, ZenTao Max v...
High
Unreviewed
CVE-2023-44827
was published
Oct 10, 2023
An issue in SeaCMS v.12.8 allows an attacker to execute arbitrary code via the admin_template.php...
High
Unreviewed
CVE-2023-44848
was published
Oct 10, 2023
Cross Site Scripting (XSS) vulnerability found in Typora v.0.9.65 allows a remote attacker to...
High
Unreviewed
CVE-2020-18336
was published
Oct 10, 2023
SAP PowerDesigner Client - version 16.7, does not sufficiently validate BPMN2 XML document...
High
Unreviewed
CVE-2023-40310
was published
Oct 10, 2023
An issue found in D-Link DSL-3782 v.1.03 and before allows remote authenticated users to execute...
High
Unreviewed
CVE-2023-44959
was published
Oct 10, 2023
An issue in SeaCMS v.12.8 allows an attacker to execute arbitrary code via the admin_ Weixin.php...
High
Unreviewed
CVE-2023-44847
was published
Oct 10, 2023
An issue in SeaCMS v.12.8 allows an attacker to execute arbitrary code via the admin_ notify.php...
High
Unreviewed
CVE-2023-44846
was published
Oct 10, 2023
A vulnerability was found in XINJE XDPPro up to 3.7.17a. It has been rated as critical. Affected...
High
Unreviewed
CVE-2023-5463
was published
Oct 10, 2023
A potential vulnerability in a driver used during manufacturing process on some consumer Lenovo...
High
Unreviewed
CVE-2022-3431
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Rémi Leclercq Hide admin notices – Admin...
High
Unreviewed
CVE-2023-41672
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in DAEXT Live News plugin <= 1.06 versions.
High
Unreviewed
CVE-2023-41669
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Palasthotel (in person: Edward Bock) Use...
High
Unreviewed
CVE-2023-41670
was published
Oct 9, 2023
Cross Site Request Forgery (CSRF) vulnerability in MooSocial v.3.1.8 allows a remote attacker to...
High
Unreviewed
CVE-2023-44811
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Leadster plugin <= 1.1.2 versions.
High
Unreviewed
CVE-2023-41668
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Ulf Benjaminsson WP-dTree plugin <= 4.4.5...
High
Unreviewed
CVE-2023-41667
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in WPSynchro WP Synchro plugin <= 1.9.1 versions.
High
Unreviewed
CVE-2023-41660
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Peter Butler Timthumb Vulnerability Scanner...
High
Unreviewed
CVE-2023-44240
was published
Oct 9, 2023
Missing Authorization in RDT400 in SICK APU allows an unprivileged remote attacker to modify data...
High
Unreviewed
CVE-2023-43700
was published
Oct 9, 2023
Mattermost fails to enforce a limit for the size of the cache entry for OpenGraph data allowing...
High
Unreviewed
CVE-2023-5330
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Joakim Ling Remove slug from custom post type...
High
Unreviewed
CVE-2023-44238
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Devnath verma WP Captcha plugin <= 2.0.0...
High
Unreviewed
CVE-2023-44236
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Moriyan Jay WP Site Protector plugin <= 2.0...
High
Unreviewed
CVE-2023-44237
was published
Oct 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Michael Tran Table of Contents Plus plugin <=...
High
Unreviewed
CVE-2023-44473
was published
Oct 9, 2023
Improper Restriction of Excessive Authentication Attempts in RDT400 in SICK APU
allows an...
High
Unreviewed
CVE-2023-43699
was published
Oct 9, 2023
ProTip!
Advisories are also available from the
GraphQL API