Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,257 advisories

Loading
An access control issue in ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to... Moderate Unreviewed
CVE-2023-38958 was published Aug 3, 2023
IBM Robotic Process Automation 21.0.0 through 21.0.7.latest is vulnerable to unauthorized access... Moderate Unreviewed
CVE-2023-23476 was published Aug 2, 2023
** UNSUPPORTED WHEN ASSIGNED ** Authentication Bypass vulnerability in D-Link DIR-885L FW102b01... Critical Unreviewed
CVE-2023-36090 was published Jul 31, 2023
** UNSUPPORTED WHEN ASSIGNED ** Authentication Bypass vulnerability in D-Link DIR-645 firmware... Critical Unreviewed
CVE-2023-36089 was published Jul 31, 2023
** UNSUPPORTED WHEN ASSIGNED ** Authentication Bypass vulnerability in D-Link DIR-895 FW102b07... Critical Unreviewed
CVE-2023-36091 was published Jul 31, 2023
** UNSUPPORTED WHEN ASSIGNED ** Authentication Bypass vulnerability in D-Link DIR-859 FW105b03... Critical Unreviewed
CVE-2023-36092 was published Jul 31, 2023
The ACF Photo Gallery Field plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed
CVE-2023-3957 was published Jul 27, 2023
This issue was addressed with improved data protection. This issue is fixed in macOS Monterey 12... Moderate Unreviewed
CVE-2023-35983 was published Jul 27, 2023
On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission... High Unreviewed
CVE-2023-2640 was published Jul 26, 2023
Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data... High Unreviewed
CVE-2023-32629 was published Jul 26, 2023
An improper privilege check in the OTRS ticket move action in the agent interface allows any as... Moderate Unreviewed
CVE-2023-38058 was published Jul 24, 2023
An access control issue in WebBoss.io CMS v3.7.0 allows attackers to access the Website Backup... High Unreviewed
CVE-2023-36339 was published Jul 21, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 12.8 before 15.11... Moderate Unreviewed
CVE-2023-3484 was published Jul 21, 2023
Wyse Management Suite versions prior to 4.0 contain an improper authorization vulnerability. An... Moderate Unreviewed
CVE-2023-32482 was published Jul 20, 2023
An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain... High Unreviewed
CVE-2022-26563 was published Jul 18, 2023
The Export and Import Users and Customers plugin for WordPress is vulnerable to unauthorized... High Unreviewed
CVE-2023-3459 was published Jul 18, 2023
Mattermost fails to properly check the authorization of POST /api/v4/teams when passing a team... Low Unreviewed
CVE-2023-3584 was published Jul 17, 2023
Mattermost WelcomeBot plugin fails to to validate the membership status when inviting or adding... Low Unreviewed
CVE-2023-3613 was published Jul 17, 2023
Mattermost fails to verify channel membership when linking a board to a channel allowing a low... Moderate Unreviewed
CVE-2023-3582 was published Jul 17, 2023
Mattermost fails to delete card attachments in Boards, allowing an attacker to access deleted... High Unreviewed
CVE-2023-3590 was published Jul 17, 2023
Mattermost fails to disable public Boards after the "Enable Publicly-Shared Boards" configuration... Moderate Unreviewed
CVE-2023-3586 was published Jul 17, 2023
A hidden API exists in TapHome's core platform before version 2023.2 that allows an authenticated... High Unreviewed
CVE-2023-2759 was published Jul 17, 2023
Sourcecodester Online Computer and Laptop Store 1.0 is vulnerable to Incorrect Access Control,... Critical Unreviewed
CVE-2023-31704 was published Jul 13, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.3 before 15... Moderate Unreviewed
CVE-2023-3444 was published Jul 13, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15... Moderate Unreviewed
CVE-2023-2576 was published Jul 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database