GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
141 advisories
Filter by severity
An arbitrary file creation vulnerability exists in the Javascript exportDataObject API of Foxit...
High
Unreviewed
CVE-2023-40194
was published
Nov 27, 2023
An arbitrary file creation vulnerability exists in the Javascript exportDataObject API of Foxit...
High
Unreviewed
CVE-2023-35985
was published
Nov 27, 2023
A code execution vulnerability exists in the Javascript saveAs API of Foxit Reader 12.1.3.15356....
High
Unreviewed
CVE-2023-39542
was published
Nov 27, 2023
This external control vulnerability, if exploited, could allow a local OS-authenticated user...
Moderate
Unreviewed
CVE-2023-34982
was published
Nov 15, 2023
In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused...
Moderate
Unreviewed
CVE-2023-40139
was published
Oct 27, 2023
On affected Wago products an remote attacker with administrative privileges can access files to...
Low
Unreviewed
CVE-2023-4089
was published
Oct 17, 2023
Local privilege escalation due to improper soft link handling. The following products are...
Moderate
Unreviewed
CVE-2023-44209
was published
Oct 4, 2023
A file write vulnerability exists in the OAS Engine configuration functionality of Open...
High
Unreviewed
CVE-2023-32615
was published
Sep 5, 2023
Local privilege escalation during installation due to improper soft link handling. The following...
High
Unreviewed
CVE-2022-46869
was published
Aug 31, 2023
Local privilege escalation during recovery due to improper soft link handling. The following...
Moderate
Unreviewed
CVE-2022-46868
was published
Aug 31, 2023
The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall...
Moderate
Unreviewed
CVE-2023-35838
was published
Aug 10, 2023
In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with...
Moderate
Unreviewed
CVE-2023-37856
was published
Aug 9, 2023
In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with...
Moderate
Unreviewed
CVE-2023-37855
was published
Aug 9, 2023
A vulnerability exists in Palo Alto Networks PAN-OS software that enables an authenticated...
Moderate
Unreviewed
CVE-2023-38046
was published
Jul 12, 2023
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics...
High
Unreviewed
CVE-2022-42732
was published
Jul 6, 2023
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics...
High
Unreviewed
CVE-2022-42893
was published
Jul 6, 2023
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics...
High
Unreviewed
CVE-2022-42734
was published
Jul 6, 2023
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics...
High
Unreviewed
CVE-2022-42733
was published
Jul 6, 2023
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics...
High
Unreviewed
CVE-2022-42891
was published
Jul 6, 2023
Advantech R-SeeNet
versions 2.4.22
allows low-level users to access and load the content of...
High
Unreviewed
CVE-2023-3256
was published
Jun 22, 2023
in-toto vulnerable to Configuration Read From Local Directory
Moderate
CVE-2023-32076
was published
for
in-toto
(pip)
May 11, 2023
A file disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated...
Moderate
Unreviewed
CVE-2023-0008
was published
May 10, 2023
Moodle External Control of File Name or Path vulnerability
Moderate
CVE-2023-30943
was published
for
moodle/moodle
(Composer)
May 2, 2023
In toUriInner of Intent.java, there is a possible way to launch an arbitrary activity due to a...
High
Unreviewed
CVE-2023-21097
was published
Apr 19, 2023
A vulnerability has been found in SourceCodester Student Study Center Desk Management System 1.0...
Moderate
Unreviewed
CVE-2023-2152
was published
Apr 18, 2023
ProTip!
Advisories are also available from the
GraphQL API