Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,280 advisories

Loading
A partial DoS vulnerability has been detected in the Reports section, exploitable by a malicious... Moderate Unreviewed
CVE-2023-24015 was published Aug 9, 2023
lol-html panics on certain HTML inputs High
CVE-2023-4241 was published for lol-html (Rust) Aug 9, 2023
PrestaShop file deletion via attachment API Moderate
CVE-2023-39529 was published for prestashop/prestashop (Composer) Aug 9, 2023
kto94
PrestaShop file deletion via CustomerMessage Moderate
CVE-2023-39530 was published for prestashop/prestashop (Composer) Aug 9, 2023
kto94
SES's dynamic import and spread operator provides possible path to arbitrary exfiltration and execution Critical
CVE-2023-39532 was published for ses (npm) Aug 9, 2023
corrideat
Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows... Moderate Unreviewed
CVE-2023-30654 was published Aug 10, 2023
Improper URL validation vulnerability in Samsung Members prior to version 14.0.07.1 allows... Moderate Unreviewed
CVE-2023-30703 was published Aug 10, 2023
Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to... High Unreviewed
CVE-2023-30691 was published Aug 10, 2023
An attacker can send a specially crafted message to the Wavelink Avalanche Manager, which could... High Unreviewed
CVE-2023-32560 was published Aug 10, 2023
Improper input validation in firmware for some Intel(R) PCSD BIOS before version 02.01.0013 may... Moderate Unreviewed
CVE-2022-34657 was published Aug 11, 2023
Improper input validation in some firmware for Intel(R) AMT and Intel(R) Standard Manageability... High Unreviewed
CVE-2022-36392 was published Aug 11, 2023
Improper Input validation in firmware for some Intel(R) Converged Security and Management Engine... Moderate Unreviewed
CVE-2022-38102 was published Aug 11, 2023
Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a... High Unreviewed
CVE-2022-44611 was published Aug 11, 2023
Improper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to... Moderate Unreviewed
CVE-2023-22449 was published Aug 11, 2023
Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may... High Unreviewed
CVE-2022-38076 was published Aug 11, 2023
Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may... Moderate Unreviewed
CVE-2022-36351 was published Aug 11, 2023
Improper input validation in BIOS firmware for some Intel(R) NUC may allow a privileged user to... Moderate Unreviewed
CVE-2022-37336 was published Aug 11, 2023
Improper input validation for the Intel(R) Easy Streaming Wizard software may allow an... High Unreviewed
CVE-2023-26587 was published Aug 11, 2023
Improper input validation in BIOS firmware for some Intel(R) NUCs may allow a privileged user to... Moderate Unreviewed
CVE-2023-29494 was published Aug 11, 2023
Improper input validation in some Intel(R) NUC Rugged Kit, Intel(R) NUC Kit and Intel(R) Compute... Moderate Unreviewed
CVE-2023-32617 was published Aug 11, 2023
Improper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to... Moderate Unreviewed
CVE-2023-34086 was published Aug 11, 2023
apache-airflow-providers-apache-drill Improper Input Validation vulnerability High
CVE-2023-39553 was published for apache-airflow-providers-apache-drill (pip) Aug 11, 2023
Vulnerability of input parameters being not strictly verified in the PMS module. Successful... High Unreviewed
CVE-2023-39388 was published Aug 13, 2023
Input verification vulnerability in the storage module. Successful exploitation of this... High Unreviewed
CVE-2023-39381 was published Aug 13, 2023
Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation... Critical Unreviewed
CVE-2023-39405 was published Aug 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database