GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,150
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
95,326 advisories
Filter by severity
The MasterStudy LMS WordPress Plugin WordPress plugin before 3.0.18 does not have proper checks...
High
Unreviewed
CVE-2023-4278
was published
Sep 11, 2023
In bta_av_rc_msg of bta_av_act.cc, there is a possible use after free due to a logic error in the...
High
Unreviewed
CVE-2023-35666
was published
Sep 11, 2023
In checkKeyIntentParceledCorrectly of AccountManagerService.java, there is a possible way to...
High
Unreviewed
CVE-2023-35669
was published
Sep 11, 2023
In hasPermissionForActivity of PackageManagerHelper.java, there is a possible way to start...
High
Unreviewed
CVE-2023-35682
was published
Sep 11, 2023
The wpDataTables WordPress plugin before 2.1.66 does not validate the "Serialized PHP array"...
High
Unreviewed
CVE-2023-4314
was published
Sep 11, 2023
In gatt_process_prep_write_rsp of gatt_cl.cc, there is a possible privilege escalation due to a...
High
Unreviewed
CVE-2023-35658
was published
Sep 11, 2023
In updateList of NotificationAccessSettings.java, there is a possible way to hide approved...
High
Unreviewed
CVE-2023-35667
was published
Sep 11, 2023
In avdt_msg_asmbl of avdt_msg.cc, there is a possible out of bounds write due to an integer...
High
Unreviewed
CVE-2023-35684
was published
Sep 11, 2023
In MtpPropertyValue of MtpProperty.h, there is a possible memory corruption due to a use after...
High
Unreviewed
CVE-2023-35687
was published
Sep 11, 2023
Relative Path Traversal in GitHub repository mintplex-labs/anything-llm prior to 0.0.1.
High
Unreviewed
CVE-2023-4897
was published
Sep 11, 2023
An issue was discovered in Inosoft VisiWin 7 through 2022-2.1 (Runtime RT7.3 RC3 20221209.5). The...
High
Unreviewed
CVE-2023-31468
was published
Sep 11, 2023
An issue in NETIS SYSTEMS WF2409E v.3.6.42541 allows a remote attacker to execute arbitrary code...
High
Unreviewed
CVE-2023-38829
was published
Sep 11, 2023
Buffer Overflow vulnerability in RaidenFTPD 2.4.4005 allows a local attacker to execute arbitrary...
High
Unreviewed
CVE-2023-39063
was published
Sep 11, 2023
?Softneta MedDream PACS stores usernames and passwords in plaintext. The plaintext storage could...
High
Unreviewed
CVE-2023-39227
was published
Sep 11, 2023
An issue was discovered in /bin/mini_upnpd on D-Link DIR-619L 2.06beta devices. There is a heap...
High
Unreviewed
CVE-2020-19323
was published
Sep 11, 2023
Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1,...
High
Unreviewed
CVE-2023-36497
was published
Sep 11, 2023
Zoho ManageEngine ADManager Plus before Build 7200 allows admin users to execute commands on the...
High
Unreviewed
CVE-2023-38743
was published
Sep 11, 2023
An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the...
High
Unreviewed
CVE-2023-39070
was published
Sep 11, 2023
ASUS RT-AX55 v3.0.0.4.386.51598 was discovered to contain an authenticated command injection...
High
Unreviewed
CVE-2023-39780
was published
Sep 11, 2023
Buffer Overflow vulnerability in NBD80S09S-KLC v.YK_HZXM_NBD80S09S-KLC_V4.03.R11.7601.Nat.OnvifC...
High
Unreviewed
CVE-2023-39068
was published
Sep 11, 2023
Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1,...
High
Unreviewed
CVE-2023-38256
was published
Sep 11, 2023
Magento LTS's guest order "protect code" can be brute-forced too easily
High
CVE-2023-41879
was published
for
openmage/magento-lts
(Composer)
Sep 11, 2023
Buffer Overflow vulnerability in D-Link DIR-605L, hardware version AX, firmware version 1.17beta...
High
Unreviewed
CVE-2020-19318
was published
Sep 11, 2023
Adobe Acrobat Reader versions 2019.021.20056 and earlier are affected by a Stack-based Buffer...
High
Unreviewed
CVE-2019-16470
was published
Sep 11, 2023
Adobe InCopy versions 17.1 (and earlier) and 16.4.1 (and earlier) are affected by an out-of...
High
Unreviewed
CVE-2022-28836
was published
Sep 11, 2023
ProTip!
Advisories are also available from the
GraphQL API