Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

985 advisories

Loading
The vulnerability is to theft of arbitrary files with system privilege in the LockScreenSettings ... High Unreviewed
CVE-2023-44122 was published Sep 27, 2023
** DISPUTED ** Plesk Onyx 17.8.11 has accessKeyId and secretAccessKey fields that are related to... High Unreviewed
CVE-2023-43784 was published Sep 22, 2023
Cadence through 0.9.2 2023-08-21 uses an Insecure /tmp/.cadence-aloop-daemon.x Temporary File.... Moderate Unreviewed
CVE-2023-43782 was published Sep 22, 2023
Cadence through 0.9.2 2023-08-21 uses an Insecure /tmp/cadence-wineasio.reg Temporary File. The... High Unreviewed
CVE-2023-43783 was published Sep 22, 2023
NVIDIA GeForce Now for Android contains a vulnerability in the game launcher component, where a... Moderate Unreviewed
CVE-2023-31014 was published Sep 20, 2023
SpringBlade <=V3.6.0 is vulnerable to Incorrect Access Control due to incorrect configuration in... Moderate Unreviewed
CVE-2023-40788 was published Sep 19, 2023
An information leak in youmart-tokunaga v13.6.1 allows attackers to obtain the channel access... Moderate Unreviewed
CVE-2023-39049 was published Sep 19, 2023
An information leak in Coffee-jumbo v13.6.1 allows attackers to obtain the channel access token... Moderate Unreviewed
CVE-2023-39056 was published Sep 19, 2023
An information leak in TonTon-Tei_waiting Line v13.6.1 allows attackers to obtain the channel... Moderate Unreviewed
CVE-2023-39046 was published Sep 19, 2023
An information leak in THE_B_members card v13.6.1 allows attackers to obtain the channel access... Moderate Unreviewed
CVE-2023-39058 was published Sep 18, 2023
An information leak in YKC Tokushima_awayokocho Line v13.6.1 allows attackers to obtain the... Moderate Unreviewed
CVE-2023-39043 was published Sep 18, 2023
An information leak in Cheese Cafe Line v13.6.1 allows attackers to obtain the channel access... Moderate Unreviewed
CVE-2023-39040 was published Sep 18, 2023
An information leak in Camp Style Project Line v13.6.1 allows attackers to obtain the channel... Moderate Unreviewed
CVE-2023-39039 was published Sep 18, 2023
A vulnerability in the Extensible Messaging and Presence Protocol (XMPP) message processing... Moderate Unreviewed
CVE-2022-20917 was published Sep 15, 2023
A vulnerability has been identified in SIMATIC PCS neo (Administration Console) V4.0 (All... Moderate Unreviewed
CVE-2023-38558 was published Sep 14, 2023
DHCP Server Service Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-38152 was published Sep 12, 2023
Windows TCP/IP Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-38160 was published Sep 12, 2023
Microsoft Word Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-36761 was published Sep 12, 2023
IBM Aspera Faspex 5.0.5 does not restrict or incorrectly restricts access to a resource from an... Moderate Unreviewed
CVE-2023-24965 was published Sep 8, 2023
Minio vulnerable to Privilege Escalation on Windows via Path separator manipulation High
CVE-2023-28433 was published for github.com/minio/minio (Go) Sep 6, 2023
donatello harshavardhana
RicterZ
Sensitive information disclosure due to excessive collection of system information. The following... Moderate Unreviewed
CVE-2023-41745 was published Aug 31, 2023
Excessive attack surface due to binding to an unrestricted IP address. The following products are... Moderate Unreviewed
CVE-2023-41742 was published Aug 31, 2023
An issue was discovered in TechView LA-5570 Wireless Gateway 1.0.19_T53, allows physical... Moderate Unreviewed
CVE-2023-34725 was published Aug 29, 2023
A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6... Moderate Unreviewed
CVE-2023-4230 was published Aug 24, 2023
The InfiniteWP Client plugin for WordPress is vulnerable to Sensitive Information Exposure in... Moderate Unreviewed
CVE-2023-2916 was published Aug 21, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database