GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+
11,280 advisories
Filter by severity
Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation...
Critical
Unreviewed
CVE-2023-39405
was published
Aug 13, 2023
Vulnerability of input parameters being not strictly verified in the PMS module. Successful...
High
Unreviewed
CVE-2023-39389
was published
Aug 13, 2023
Vulnerability of input parameters being not strictly verified in the PMS module. Successful...
High
Unreviewed
CVE-2023-39386
was published
Aug 13, 2023
Vulnerability of input parameter verification in certain APIs in the window management module....
High
Unreviewed
CVE-2023-39390
was published
Aug 13, 2023
Vulnerability of input parameter verification in certain APIs in the window management module....
High
Unreviewed
CVE-2023-39404
was published
Aug 13, 2023
In readFrom of Uri.java, there is a possible bad URI permission grant due to improper input...
High
Unreviewed
CVE-2023-21272
was published
Aug 15, 2023
In multiple functions of DevicePolicyManager.java, there is a possible way to prevent enabling...
Moderate
Unreviewed
CVE-2023-21284
was published
Aug 15, 2023
Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed...
High
Unreviewed
CVE-2023-4357
was published
Aug 15, 2023
Insufficient validation in the IOCTL (Input Output Control) input buffer in AMD Ryzen™...
Moderate
Unreviewed
CVE-2023-20564
was published
Aug 16, 2023
Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD Ryzen™...
Moderate
Unreviewed
CVE-2023-20560
was published
Aug 16, 2023
Woodpecker does not validate webhook before changing any data
High
CVE-2023-40034
was published
for
github.com/woodpecker-ci/woodpecker
(Go)
Aug 16, 2023
IBM WebSphere Application Server Liberty 22.0.0.13 through 23.0.0.7 is vulnerable to a denial of...
High
Unreviewed
CVE-2023-38737
was published
Aug 16, 2023
A vulnerability in the Tomcat implementation for Cisco Unified Contact Center Express (Unified...
Moderate
Unreviewed
CVE-2023-20232
was published
Aug 17, 2023
Apache Airflow Spark Provider Improper Input Validation vulnerability
High
CVE-2023-40272
was published
for
apache-airflow-providers-apache-spark
(pip)
Aug 17, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation...
High
Unreviewed
CVE-2023-2914
was published
Aug 17, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation...
Critical
Unreviewed
CVE-2023-2917
was published
Aug 17, 2023
The Rockwell Automation Thinmanager Thinserver is impacted by an improper input validation...
Critical
Unreviewed
CVE-2023-2915
was published
Aug 17, 2023
Improper Input Validation in GitHub repository hamza417/inure prior to build88.
High
Unreviewed
CVE-2023-4435
was published
Aug 20, 2023
An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, 1.39.x...
Moderate
Unreviewed
CVE-2023-36674
was published
Aug 20, 2023
Due to improper input validation, a remote attacker could execute arbitrary commands on the...
Critical
Unreviewed
CVE-2023-25915
was published
Aug 21, 2023
A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco NX-OS...
High
Unreviewed
CVE-2023-20169
was published
Aug 23, 2023
A vulnerability in TACACS+ and RADIUS remote authentication for Cisco NX-OS Software could allow...
Moderate
Unreviewed
CVE-2023-20168
was published
Aug 23, 2023
The vulnerability exists in CP-Plus DVR due to an improper input validation within the web-based...
Moderate
Unreviewed
CVE-2023-3704
was published
Aug 24, 2023
The vulnerability exists in CP-Plus NVR due to an improper input handling at the web-based...
High
Unreviewed
CVE-2023-3705
was published
Aug 24, 2023
The sub_451784 function does not validate the parameters entered by the user, resulting in a...
High
Unreviewed
CVE-2023-40801
was published
Aug 25, 2023
ProTip!
Advisories are also available from the
GraphQL API