Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,432 advisories

Loading
he vulnerability is to delete arbitrary files in LGInstallService ("com.lge.lginstallservies")... Low Unreviewed
CVE-2023-44128 was published Sep 27, 2023
The vulnerability is that the Messaging ("com.android.mms") app patched by LG forwards attacker... Low Unreviewed
CVE-2023-44129 was published Sep 27, 2023
Sensitive information disclosure due to improper authorization. The following products are... Low Unreviewed
CVE-2023-44205 was published Sep 27, 2023
Sensitive information disclosure and manipulation due to improper authorization. The following... Low Unreviewed
CVE-2023-44154 was published Sep 27, 2023
Economizzer Insecure Direct Object Reference vulnerability Low
CVE-2023-38872 was published for gugoan/economizzer (Composer) Sep 28, 2023
An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior... Low Unreviewed
CVE-2023-3906 was published Sep 29, 2023
A vulnerability classified as problematic was found in ForU CMS. This vulnerability affects... Low Unreviewed
CVE-2023-5259 was published Sep 29, 2023
A vulnerability was found in WhiteHSBG JNDIExploit 1.4 on Windows. It has been rated as... Low Unreviewed
CVE-2023-5257 was published Sep 29, 2023
Mattermost Incorrect Authorization vulnerability Low
CVE-2023-5193 was published for github.com/mattermost/mattermost-server/v6 (Go) Sep 29, 2023
Mattermost Incorrect Authorization vulnerability Low
CVE-2023-5159 was published for github.com/mattermost/mattermost-server/v6 (Go) Sep 29, 2023
CometBFT's default for `BlockParams.MaxBytes` consensus parameter may increase block times and affect consensus participation Low
GHSA-hq58-p9mv-338c was published for github.com/cometbft/cometbft (Go) Sep 29, 2023
** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was... Low Unreviewed
CVE-2023-5287 was published Sep 29, 2023
A vulnerability was found in Xinhu RockOA 2.3.2. It has been classified as problematic. This... Low Unreviewed
CVE-2023-5297 was published Sep 30, 2023
A vulnerability was found in SATO CL4NX-J Plus 1.13.2-u455_r2. It has been rated as problematic.... Low Unreviewed
CVE-2023-5327 was published Oct 2, 2023
A flaw exists in FlashBlade Purity (OE) Version 4.1.0 whereby a user with privileges to extend an... Low Unreviewed
CVE-2023-28372 was published Oct 3, 2023
A flaw exists in FlashArray Purity whereby an array administrator by configuring an external key... Low Unreviewed
CVE-2023-28373 was published Oct 3, 2023
A flaw exists in FlashBlade Purity whereby a user with access to an administrative account on a... Low Unreviewed
CVE-2023-36627 was published Oct 3, 2023
Improper access control in system property prior to SMR Oct-2023 Release 1 allows local attacker... Low Unreviewed
CVE-2023-30732 was published Oct 4, 2023
Improper Preservation of Permissions vulnerability in SAssistant prior to version 8.7 allows... Low Unreviewed
CVE-2023-30735 was published Oct 4, 2023
Zope management interface vulnerable to stored cross site scripting via the title property Low
CVE-2023-44389 was published for Zope (pip) Oct 4, 2023
dataflake drfho
icemac d-maurer
gnark-crypto's exponentiation in the pairing target group GT using GLV can give incorrect results Low
GHSA-pffg-92cg-xf5c was published for github.com/consensys/gnark-crypto (Go) Oct 5, 2023
asanso yelhousni
xblanchot-gg
Sensitive information disclosure due to excessive collection of system information. The following... Low Unreviewed
CVE-2023-44213 was published Oct 6, 2023
Sensitive information disclosure due to missing authorization. The following products are... Low Unreviewed
CVE-2023-45245 was published Oct 6, 2023
A vulnerability was found in Delta Electronics WPLSoft 2.51. It has been classified as... Low Unreviewed
CVE-2023-5461 was published Oct 9, 2023
A vulnerability was found in Delta Electronics WPLSoft up to 2.51 and classified as problematic.... Low Unreviewed
CVE-2023-5460 was published Oct 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database