Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,257 advisories

Loading
The Advanced File Manager WordPress plugin before 5.1.1 does not adequately authorize its usage... Moderate Unreviewed
CVE-2023-3814 was published Sep 4, 2023
The Media from FTP WordPress plugin before 11.17 does not properly limit who can use the plugin,... High Unreviewed
CVE-2023-4019 was published Sep 4, 2023
An issue has been discovered in GitLab affecting all versions starting from 10.0 before 16.1.5,... Moderate Unreviewed
CVE-2023-0120 was published Sep 1, 2023
An improper authorization vulnerability exists where an authenticated, low privileged remote... Moderate Unreviewed
CVE-2023-3253 was published Aug 29, 2023
An issue was discovered in TECHView LA5570 Wireless Gateway 1.0.19_T53, allows physical attackers... Moderate Unreviewed
CVE-2023-34724 was published Aug 29, 2023
A vulnerability has been identified in the ioLogik 4000 Series (ioLogik E4200) firmware versions... Moderate Unreviewed
CVE-2023-4227 was published Aug 24, 2023
A vulnerability was found in subscription-manager that allows local privilege escalation due to... High Unreviewed
CVE-2023-3899 was published Aug 23, 2023
In Cacti 1.2.19, there is an authentication bypass in the web login functionality because of... Moderate Unreviewed
CVE-2022-48538 was published Aug 22, 2023
A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and... Critical Unreviewed
CVE-2023-38035 was published Aug 21, 2023
TN-5900 Series firmware version v3.3 and prior is vulnerable to improper-authentication... High Unreviewed
CVE-2023-33237 was published Aug 17, 2023
There is a permission and access control vulnerability in some ZTE mobile phones. Due to... Low Unreviewed
CVE-2023-25647 was published Aug 17, 2023
The Linux DVS server component of Mitel MiVoice Connect through 19.3 SP2 (22.24.1500.0) could... Critical Unreviewed
CVE-2023-32748 was published Aug 14, 2023
Vulnerability of incomplete permission verification in the input method module. Successful... High Unreviewed
CVE-2023-39384 was published Aug 13, 2023
Improper access control in firmware for some Intel(R) PROSet/Wireless WiFi software for Windows... Moderate Unreviewed
CVE-2023-28714 was published Aug 11, 2023
Improper access control in the Intel(R) CSME software installer before version 2239.3.7.0 may... High Unreviewed
CVE-2022-29871 was published Aug 11, 2023
Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.56.6?allows local... Moderate Unreviewed
CVE-2023-30705 was published Aug 10, 2023
KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 exhibit a... Critical Unreviewed
CVE-2023-33468 was published Aug 9, 2023
An access control vulnerability was found, due to the restrictions that are applied on actual... Moderate Unreviewed
CVE-2023-24471 was published Aug 9, 2023
The FULL - Customer plugin for WordPress is vulnerable to Information Disclosure via the /health... Moderate Unreviewed
CVE-2023-4242 was published Aug 9, 2023
SAP NetWeaver Application Server ABAP and ABAP Platform - versions SAP_BASIS 700, SAP_BASIS 701,... Moderate Unreviewed
CVE-2023-37492 was published Aug 8, 2023
The ACL (Access Control List) of SAP Message Server - versions KERNEL 7.22, KERNEL 7.53, KERNEL 7... High Unreviewed
CVE-2023-37491 was published Aug 8, 2023
The event analysis component in Zoho ManageEngine ADAudit Plus 7.1.1 allows an attacker to bypass... High Unreviewed
CVE-2023-32783 was published Aug 7, 2023
A flaw was found in the Linux kernel's TUN/TAP functionality. This issue could allow a local user... Moderate Unreviewed
CVE-2023-4194 was published Aug 7, 2023
In imgsys, there is a possible system crash due to a mssing ptr check. This could lead to local... Moderate Unreviewed
CVE-2023-20800 was published Aug 7, 2023
An issue was discovered in FvbServicesRuntimeDxe in Insyde InsydeH2O with kernel 5.0 through 5.5.... Moderate Unreviewed
CVE-2023-28468 was published Aug 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database