Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,281 advisories

Loading
Improper Input Validation in the hyperlink interpretation in Savoir-faire Linux's Jami (version... Moderate Unreviewed
CVE-2023-3434 was published Jul 14, 2023
Microsoft Edge for Android (Chromium-based) Tampering Vulnerability Moderate Unreviewed
CVE-2023-36888 was published Jul 14, 2023
If a TLS 1.3 client gets neither a PSK (pre shared key) extension nor a KSE (key share extension)... High Unreviewed
CVE-2023-3724 was published Jul 18, 2023
IBM Spectrum Protect 8.1.0.0 through 8.1.17.0 could allow a local user to cause a denial of... Moderate Unreviewed
CVE-2023-33832 was published Jul 19, 2023
IBM Security Guardium 11.3 could allow an authenticated user to cause a denial of service due to... Moderate Unreviewed
CVE-2022-43908 was published Jul 19, 2023
IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.2 CD, and 9.3 CD and IBM MQ Appliance 9.2 LTS, 9.3... High Unreviewed
CVE-2023-28513 was published Jul 19, 2023
Reflected Cross-Site Scripting (XSS) Moderate Unreviewed
CVE-2023-3466 was published Jul 19, 2023
An improper input validation vulnerability in OTRS Survey modules allows any attacker with a link... Moderate Unreviewed
CVE-2023-38057 was published Jul 24, 2023
Improper Input Validation vulnerability in the ContentType parameter for attachments on... High Unreviewed
CVE-2023-38060 was published Jul 24, 2023
A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the... High Unreviewed
CVE-2022-2502 was published Jul 26, 2023
Local user may lead to privilege escalation using Gaia Portal hostnames page. High Unreviewed
CVE-2023-28130 was published Jul 26, 2023
Interactive Forms (IAF) in GX Software XperienCentral versions 10.33.1 until 10.35.0 was... High Unreviewed
CVE-2022-43713 was published Jul 26, 2023
Possible image tampering from missing image validation for Packages High
CVE-2023-38495 was published for github.com/crossplane/crossplane (Go) Jul 28, 2023
AdamKorcz DavidKorczynski
phisco
Insufficient data validation in DevTools in Google Chrome prior to 106.0.5249.62 allowed a remote... Moderate Unreviewed
CVE-2022-4911 was published Jul 29, 2023
Insufficient validation of untrusted input in QUIC in Google Chrome prior to 97.0.4692.71 allowed... Moderate Unreviewed
CVE-2022-4925 was published Jul 29, 2023
Silverstripe Framework: Members with no password can be created and bypass custom login forms Low
CVE-2023-32302 was published for silverstripe/framework (Composer) Jul 31, 2023
sabina-talipova bimthebam
maxime-rainville
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.1 before 16... High Unreviewed
CVE-2023-3900 was published Aug 2, 2023
In multiple Codesys products in multiple versions, after successful authentication as a user,... Moderate Unreviewed
CVE-2023-37545 was published Aug 3, 2023
In multiple Codesys products in multiple versions, after successful authentication as a user,... Moderate Unreviewed
CVE-2023-37546 was published Aug 3, 2023
In multiple Codesys products in multiple versions, after successful authentication as a user,... Moderate Unreviewed
CVE-2023-37548 was published Aug 3, 2023
In multiple Codesys products in multiple versions, after successful authentication as a user,... Moderate Unreviewed
CVE-2023-37547 was published Aug 3, 2023
In multiple versions of multiple Codesys products, after successful authentication as a user,... Moderate Unreviewed
CVE-2023-37553 was published Aug 3, 2023
In multiple Codesys products in multiple versions, after successful authentication as a user,... Moderate Unreviewed
CVE-2023-37550 was published Aug 3, 2023
In multiple versions of multiple Codesys products, after successful authentication as a user,... Moderate Unreviewed
CVE-2023-37552 was published Aug 3, 2023
In multiple Codesys products in multiple versions, after successful authentication as a user,... Moderate Unreviewed
CVE-2023-37549 was published Aug 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database