Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,432 advisories

Loading
Adobe After Effects version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by an out-of... Low Unreviewed
CVE-2023-47071 was published Nov 17, 2023
Adobe After Effects version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by an Access... Low Unreviewed
CVE-2023-47072 was published Nov 17, 2023
It was discovered that Kibana was not validating a user supplied path, which would load .pbf... Low Unreviewed
CVE-2021-22151 was published Nov 22, 2023
Exposure of Sensitive Information in Elastic APM .NET Agent Low
CVE-2021-22143 was published for Elastic.Apm (NuGet) Nov 22, 2023
MarkLee131
The LifterLMS – WordPress LMS Plugin for eLearning plugin for WordPress is vulnerable to... Low Unreviewed
CVE-2023-6160 was published Nov 22, 2023
The MainWP Dashboard – WordPress Manager for Multiple Websites Maintenance plugin for WordPress... Low Unreviewed
CVE-2023-6164 was published Nov 22, 2023
IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a local user to perform unauthorized... Low Unreviewed
CVE-2023-26279 was published Nov 24, 2023
IBM QRadar WinCollect Agent 10.0 through 10.1.7 could allow a privileged user to obtain... Low Unreviewed
CVE-2021-39008 was published Nov 24, 2023
Cross-site Request Forgery (CSRF) in Checkmk < 2.2.0p15, < 2.1.0p37, <= 2.0.0p39 allow an... Low Unreviewed
CVE-2023-6251 was published Nov 24, 2023
A vulnerability was found in CSZCMS 1.3.0. It has been classified as problematic. This affects an... Low Unreviewed
CVE-2023-6303 was published Nov 27, 2023
Mattermost Injection vulnerability Low
CVE-2023-35075 was published for github.com/mattermost/mattermost-server/v6 (Go) Nov 27, 2023
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.8 allows local... Low Unreviewed
CVE-2023-6287 was published Nov 27, 2023
google-translate-api-browser Server-Side Request Forgery (SSRF) Vulnerability Low
CVE-2023-48711 was published for google-translate-api-browser (npm) Nov 27, 2023
PinkDraconian
The FACSChorus software does not properly assign data access privileges for operating system user... Low Unreviewed
CVE-2023-29066 was published Nov 28, 2023
The FACSChorus workstation does not prevent physical access to its PCI express (PCIe) slots,... Low Unreviewed
CVE-2023-29063 was published Nov 28, 2023
The Operating System hosting the FACSChorus application is configured to allow transmission of... Low Unreviewed
CVE-2023-29062 was published Nov 28, 2023
Keycloak vulnerable to LDAP Injection on UsernameForm Login Low
CVE-2022-2232 was published for org.keycloak:keycloak-ldap-federation (Maven) Nov 29, 2023
kongold
Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to... Low Unreviewed
CVE-2023-5274 was published Nov 30, 2023
Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to... Low Unreviewed
CVE-2023-5275 was published Nov 30, 2023
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in YetAnotherStarsRating.Com YASR... Low Unreviewed
CVE-2023-37867 was published Nov 30, 2023
An issue has been discovered in GitLab affecting all versions starting from 12.1 before 16.4.3,... Low Unreviewed
CVE-2023-3443 was published Dec 1, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 8.13 before 16.4.3... Low Unreviewed
CVE-2023-4658 was published Dec 1, 2023
Access to critical Unified Diagnostics Services (UDS) of the Modular Infotainment Platform 3 ... Low Unreviewed
CVE-2023-28896 was published Dec 1, 2023
The password for access to the debugging console of the PoWer Controller chip (PWC) of the MIB3... Low Unreviewed
CVE-2023-28895 was published Dec 1, 2023
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been rated as problematic. This issue... Low Unreviewed
CVE-2023-6467 was published Dec 2, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database