Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,361
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,794
NuGet
685
pip
3,473
Pub
12
RubyGems
895
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+

991 advisories

Loading
Under specific circumstances a WebExtension may have received a <code>jar:file:///</code> URI... Moderate Unreviewed
CVE-2023-29538 was published Jun 2, 2023
Under certain circumstances, a ServiceWorker's offline cache may have leaked to the file system... Moderate Unreviewed
CVE-2023-25750 was published Jun 2, 2023
Missing Password Field Masking vulnerability in Mitsubishi Electric Corporation EtherNet/IP... Moderate Unreviewed
CVE-2023-2062 was published Jun 2, 2023
An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console... High Unreviewed
CVE-2023-28344 was published May 31, 2023
Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Finex Media... High Unreviewed
CVE-2023-2703 was published May 23, 2023
An issue was discovered in KaiOS 3.0 and 3.1. The binary /system/kaios/api-daemon exposes a local... Moderate Unreviewed
CVE-2023-33293 was published May 22, 2023
OpenBlue Enterprise Manager Data Collector versions prior to 3.2.5.75 may expose sensitive... Moderate Unreviewed
CVE-2023-2025 was published May 18, 2023
Inclusion of Sensitive Information in Source Code in SICK FTMg AIR FLOW SENSOR with Partnumbers... Moderate Unreviewed
CVE-2023-23448 was published May 15, 2023
An issue found in Webroot SecureAnywhere Endpoint Protection CE 23.1 v.9.0.33.39 and before... Moderate Unreviewed
CVE-2023-29820 was published May 12, 2023
n8n Information Disclosure vulnerability High
CVE-2023-27564 was published for n8n (npm) May 10, 2023
MarkLee131
Exposure of data element to wrong session in the Intel DCM software before version 5.0.1 may... High Unreviewed
CVE-2022-40210 was published May 10, 2023
Exposure of resource to wrong sphere in BIOS firmware for some Intel(R) Processors may allow a... Moderate Unreviewed
CVE-2022-38087 was published May 10, 2023
An issue has been discovered in GitLab affecting all versions starting from 13.11 before 15.8.5,... Moderate Unreviewed
CVE-2023-0485 was published May 3, 2023
An issue has been discovered in GitLab affecting all versions starting from 10.0 before 12.9.8,... Moderate Unreviewed
CVE-2023-2069 was published May 3, 2023
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR... High Unreviewed
CVE-2023-26243 was published Apr 27, 2023
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.4 allows local... Moderate Unreviewed
CVE-2023-22307 was published Apr 18, 2023
An issue was discovered in the VisualEditor extension in MediaWiki before 1.31.13, and 1.32.x... Moderate Unreviewed
CVE-2021-30153 was published Apr 15, 2023
KYOCERA Mobile Print' v3.2.0.230119 and earlier, 'UTAX/TA MobilePrint' v3.2.0.230119 and earlier,... Moderate Unreviewed
CVE-2023-25954 was published Apr 13, 2023
Unauthenticated user can have information about hidden users on subwikis through uorgsuggest.vm Low
CVE-2023-29203 was published for org.xwiki.platform:xwiki-platform-web-templates (Maven) Apr 12, 2023
org.xwiki.platform:xwiki-platform-oldcore vulnerable to data leak through deleted documents High
CVE-2023-29208 was published for org.xwiki.platform:xwiki-platform-oldcore (Maven) Apr 12, 2023
Aten PE8108 2.4.232 is vulnerable to Incorrect Access Control. Restricted users have access to... High Unreviewed
CVE-2023-25409 was published Apr 11, 2023
In telecom service, there is a missing permission check. This could lead to local denial of... High Unreviewed
CVE-2022-47338 was published Apr 11, 2023
Use of hard-coded credentials vulnerability in Buffalo network devices allows an attacker to... High Unreviewed
CVE-2023-26588 was published Apr 11, 2023
An information disclosure vulnerability exists in SAP Landscape Management - version 3.0,... High Unreviewed
CVE-2023-26458 was published Apr 11, 2023
Mattermost vulnerable to information disclosure Moderate
CVE-2023-1777 was published for github.com/mattermost/mattermost-server (Go) Mar 31, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database