GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,463
Composer 4,412
Erlang 33
GitHub Actions 22
Go 2,148
Maven 5,319
npm 3,814
NuGet 689
pip 3,487
Pub 12
RubyGems 901
Rust 900
Swift 38

Unreviewed advisories

All unreviewed 246,508

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

259 advisories

Filter by severity

Sort by

Least recently updated

TOTOLINK A3700R V9.1.2u.6134_B20201202 and N600R V5.3c.5137 are vulnerable to Incorrect Access... Critical Unreviewed

CVE-2023-43141 was published Sep 25, 2023

** UNSUPPPORTED WHEN ASSIGNED ** Devices ekorCCP and ekorRCI are vulnerable due to access to the... Critical Unreviewed

CVE-2022-47558 was published Sep 19, 2023

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.2... Critical Unreviewed

CVE-2023-5009 was published Sep 19, 2023

An issue was discovered on ARRIS TG852G, TG862G, and TG1672G devices. A remote attacker (in... Critical Unreviewed

CVE-2023-40039 was published Sep 11, 2023

Incorrect access control in the User Registration page of Crypto Currency Tracker (CCT) before v9... Critical Unreviewed

CVE-2023-37759 was published Sep 8, 2023

An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation... Critical Unreviewed

CVE-2023-31242 was published Sep 5, 2023

Improper access control in the Intel(R) Ethernet Controller RDMA driver for linux before version... Critical Unreviewed

CVE-2023-25775 was published Aug 11, 2023

SAP PowerDesigner - version 16.7, has improper access control which might allow an... Critical Unreviewed

CVE-2023-37483 was published Aug 8, 2023

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device... Critical Unreviewed

CVE-2023-29130 was published Jul 11, 2023

A vulnerability has been discovered in the customer-managed ShareFile storage zones controller... Critical Unreviewed

CVE-2023-24489 was published Jul 11, 2023

?Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contain improper access... Critical Unreviewed

CVE-2023-30765 was published Jul 10, 2023

Rockwell Automation was made aware that Kinetix 5500 drives, manufactured between May 2022 and... Critical Unreviewed

CVE-2023-1834 was published Jul 6, 2023

A privilege escalation allowing remote code execution was discovered in the orchestration service. Critical Unreviewed

CVE-2023-2530 was published Jun 7, 2023

The Pinterest Automatic plugin for WordPress is vulnerable to authorization bypass due to missing... Critical Unreviewed

CVE-2021-4380 was published Jun 7, 2023

Snap One OvrC cloud servers contain a route an attacker can use to bypass requirements and... Critical Unreviewed

CVE-2023-31241 was published May 22, 2023

This vulnerability allows remote attackers to bypass authentication on affected installations of... Critical Unreviewed

CVE-2023-27350 was published Apr 20, 2023

Some Hikvision Hybrid SAN/Cluster Storage products have an access control vulnerability which can... Critical Unreviewed

CVE-2023-28808 was published Apr 11, 2023

A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been rated as critical.... Critical Unreviewed

CVE-2023-1557 was published Mar 22, 2023

Omron CJ1M unit v4.0 and prior has improper access controls on the memory region where the UM... Critical Unreviewed

CVE-2023-0811 was published Mar 16, 2023

A vulnerability was found in SourceCodester Online Food Ordering System 2.0 and classified as... Critical Unreviewed

CVE-2023-1432 was published Mar 16, 2023

Broken access control in Advanced Authentication versions prior to 6.4.1.1 and 6.3.7.2 Critical Unreviewed

CVE-2023-24468 was published Mar 16, 2023

A vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been rated as critical... Critical Unreviewed

CVE-2023-0963 was published Feb 22, 2023

LS ELECTRIC XBC-DN32U with operating system version 01.80 does not properly control access to the... Critical Unreviewed

CVE-2023-22807 was published Feb 15, 2023

A vulnerability was found in Little Apps Little Software Stats. It has been declared as critical.... Critical Unreviewed

CVE-2015-10057 was published Jan 16, 2023

An unauthenticated attacker in SAP NetWeaver AS for Java - version 7.50, due to improper access... Critical Unreviewed

CVE-2023-0017 was published Jan 10, 2023

Previous 1 2 3 4 5 6 7 … 10 11 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

259 advisories