Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,150
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+

95,326 advisories

Loading
The MasterStudy LMS WordPress Plugin WordPress plugin before 3.0.18 does not have proper checks... High Unreviewed
CVE-2023-4278 was published Sep 11, 2023
In bta_av_rc_msg of bta_av_act.cc, there is a possible use after free due to a logic error in the... High Unreviewed
CVE-2023-35666 was published Sep 11, 2023
In checkKeyIntentParceledCorrectly of AccountManagerService.java, there is a possible way to... High Unreviewed
CVE-2023-35669 was published Sep 11, 2023
In hasPermissionForActivity of PackageManagerHelper.java, there is a possible way to start... High Unreviewed
CVE-2023-35682 was published Sep 11, 2023
The wpDataTables WordPress plugin before 2.1.66 does not validate the "Serialized PHP array"... High Unreviewed
CVE-2023-4314 was published Sep 11, 2023
In gatt_process_prep_write_rsp of gatt_cl.cc, there is a possible privilege escalation due to a... High Unreviewed
CVE-2023-35658 was published Sep 11, 2023
In updateList of NotificationAccessSettings.java, there is a possible way to hide approved... High Unreviewed
CVE-2023-35667 was published Sep 11, 2023
In avdt_msg_asmbl of avdt_msg.cc, there is a possible out of bounds write due to an integer... High Unreviewed
CVE-2023-35684 was published Sep 11, 2023
In MtpPropertyValue of MtpProperty.h, there is a possible memory corruption due to a use after... High Unreviewed
CVE-2023-35687 was published Sep 11, 2023
Relative Path Traversal in GitHub repository mintplex-labs/anything-llm prior to 0.0.1. High Unreviewed
CVE-2023-4897 was published Sep 11, 2023
An issue was discovered in Inosoft VisiWin 7 through 2022-2.1 (Runtime RT7.3 RC3 20221209.5). The... High Unreviewed
CVE-2023-31468 was published Sep 11, 2023
An issue in NETIS SYSTEMS WF2409E v.3.6.42541 allows a remote attacker to execute arbitrary code... High Unreviewed
CVE-2023-38829 was published Sep 11, 2023
Buffer Overflow vulnerability in RaidenFTPD 2.4.4005 allows a local attacker to execute arbitrary... High Unreviewed
CVE-2023-39063 was published Sep 11, 2023
?Softneta MedDream PACS stores usernames and passwords in plaintext. The plaintext storage could... High Unreviewed
CVE-2023-39227 was published Sep 11, 2023
An issue was discovered in /bin/mini_upnpd on D-Link DIR-619L 2.06beta devices. There is a heap... High Unreviewed
CVE-2020-19323 was published Sep 11, 2023
Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1,... High Unreviewed
CVE-2023-36497 was published Sep 11, 2023
Zoho ManageEngine ADManager Plus before Build 7200 allows admin users to execute commands on the... High Unreviewed
CVE-2023-38743 was published Sep 11, 2023
An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the... High Unreviewed
CVE-2023-39070 was published Sep 11, 2023
ASUS RT-AX55 v3.0.0.4.386.51598 was discovered to contain an authenticated command injection... High Unreviewed
CVE-2023-39780 was published Sep 11, 2023
Buffer Overflow vulnerability in NBD80S09S-KLC v.YK_HZXM_NBD80S09S-KLC_V4.03.R11.7601.Nat.OnvifC... High Unreviewed
CVE-2023-39068 was published Sep 11, 2023
Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1,... High Unreviewed
CVE-2023-38256 was published Sep 11, 2023
Magento LTS's guest order "protect code" can be brute-forced too easily High
CVE-2023-41879 was published for openmage/magento-lts (Composer) Sep 11, 2023
theroch fballiano
colinmollenhour
Buffer Overflow vulnerability in D-Link DIR-605L, hardware version AX, firmware version 1.17beta... High Unreviewed
CVE-2020-19318 was published Sep 11, 2023
Adobe Acrobat Reader versions 2019.021.20056 and earlier are affected by a Stack-based Buffer... High Unreviewed
CVE-2019-16470 was published Sep 11, 2023
Adobe InCopy versions 17.1 (and earlier) and 16.4.1 (and earlier) are affected by an out-of... High Unreviewed
CVE-2022-28836 was published Sep 11, 2023
ProTip! Advisories are also available from the GraphQL API