GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,155
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
110,988 advisories
Filter by severity
PaddlePaddle null pointer dereference in paddle.nextafter
Moderate
CVE-2023-52302
was published
for
PaddlePaddle
(pip)
Jan 3, 2024
PaddlePaddle segfault in paddle.put_along_axis
Moderate
CVE-2023-52303
was published
for
paddlepaddle
(pip)
Jan 3, 2024
PaddlePaddle floating point exception in paddle.linalg.matrix_rank
Moderate
CVE-2023-38675
was published
for
PaddlePaddle
(pip)
Jan 3, 2024
PaddlePaddle floating point exception in paddle.linalg.eig
Moderate
CVE-2023-38677
was published
for
paddlepaddle
(pip)
Jan 3, 2024
PaddlePaddle segfault in paddle.dot
Moderate
CVE-2023-38676
was published
for
PaddlePaddle
(pip)
Jan 3, 2024
PaddlePaddle floating point exception in paddle.nanmedian
Moderate
CVE-2023-38674
was published
for
PaddlePaddle
(pip)
Jan 3, 2024
The EmbedPress – Embed PDF, YouTube, Google Docs, Vimeo, Wistia Videos, Audios, Maps & Any...
Moderate
Unreviewed
CVE-2023-6986
was published
Jan 3, 2024
The POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress...
Moderate
Unreviewed
CVE-2023-6629
was published
Jan 3, 2024
The WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc plugin...
Moderate
Unreviewed
CVE-2023-6981
was published
Jan 3, 2024
The WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc plugin...
Moderate
Unreviewed
CVE-2023-6980
was published
Jan 3, 2024
The MapPress Maps for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
Moderate
Unreviewed
CVE-2023-6524
was published
Jan 3, 2024
There is an unsafe DLL loading vulnerability in ZTE ZXCLOUD iRAI. Due to the program failed to...
Moderate
Unreviewed
CVE-2023-41780
was published
Jan 3, 2024
There is a local privilege escalation vulnerability of ZTE's ZXCLOUD iRAI.Attackers with regular...
Moderate
Unreviewed
CVE-2023-41776
was published
Jan 3, 2024
There is a command injection vulnerability of ZTE's ZXCLOUD iRAI. Due to the program failed to...
Moderate
Unreviewed
CVE-2023-41783
was published
Jan 3, 2024
There is an illegal memory access vulnerability of ZTE's ZXCLOUD iRAI product.When the...
Moderate
Unreviewed
CVE-2023-41779
was published
Jan 3, 2024
HCL DRYiCE MyXalytics is impacted by improper access control (Unauthenticated File Download)...
Moderate
Unreviewed
CVE-2023-50344
was published
Jan 3, 2024
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the...
Moderate
Unreviewed
CVE-2023-49557
was published
Jan 3, 2024
Buffer Overflow vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial...
Moderate
Unreviewed
CVE-2023-49556
was published
Jan 3, 2024
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the...
Moderate
Unreviewed
CVE-2023-49558
was published
Jan 3, 2024
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the...
Moderate
Unreviewed
CVE-2023-49555
was published
Jan 3, 2024
Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of...
Moderate
Unreviewed
CVE-2023-49554
was published
Jan 3, 2024
A vulnerability has been found in Magic-Api up to 2.0.1 and classified as critical. Affected by...
Moderate
Unreviewed
CVE-2024-0196
was published
Jan 3, 2024
An issue was discovered in open5gs v2.6.6. InitialUEMessage, Registration request sent at a...
Moderate
Unreviewed
CVE-2023-50019
was published
Jan 3, 2024
Gila CMS SQL Injection
Moderate
CVE-2020-26623
was published
for
gilacms/gila
(Composer)
Jan 3, 2024
A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking...
Moderate
Unreviewed
CVE-2024-0194
was published
Jan 2, 2024
ProTip!
Advisories are also available from the
GraphQL API