GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
109,743 advisories
Filter by severity
IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This...
Moderate
Unreviewed
CVE-2023-46174
was published
Dec 1, 2023
IBM InfoSphere Information Server 11.7 could allow a remote attacker to cause a denial of...
Moderate
Unreviewed
CVE-2023-42019
was published
Dec 1, 2023
IBM Planning Analytics on Cloud Pak for Data 4.0 could allow an attacker on a shared network to...
Moderate
Unreviewed
CVE-2023-26024
was published
Dec 1, 2023
IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could...
Moderate
Unreviewed
CVE-2023-38268
was published
Dec 1, 2023
OpenSearch StackOverflow vulnerability
Moderate
GHSA-6g3j-p5g6-992f
was published
for
org.opensearch:opensearch
(Maven)
Dec 1, 2023
Reflected XSS Vulnerability in dpaste
Moderate
CVE-2023-49277
was published
for
Dpaste
(pip)
Dec 1, 2023
A vulnerability exists in the input validation of the GOOSE
messages where out of range values...
Moderate
Unreviewed
CVE-2023-4518
was published
Dec 1, 2023
The Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due to...
Moderate
Unreviewed
CVE-2023-6449
was published
Dec 1, 2023
A vulnerability of Uncontrolled Resource Consumption has been identified in STARDOM provided by...
Moderate
Unreviewed
CVE-2023-5915
was published
Dec 1, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 10.5 before 16.4.3...
Moderate
Unreviewed
CVE-2023-4912
was published
Dec 1, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 16.2 before 16.4.3...
Moderate
Unreviewed
CVE-2023-5995
was published
Dec 1, 2023
An issue has been discovered in GitLab affecting all versions before 16.4.3, all versions...
Moderate
Unreviewed
CVE-2023-5226
was published
Dec 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 9.2 before 16.4.3,...
Moderate
Unreviewed
CVE-2023-4317
was published
Dec 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3,...
Moderate
Unreviewed
CVE-2023-3964
was published
Dec 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 11.3 before 16.4.3,...
Moderate
Unreviewed
CVE-2023-3949
was published
Dec 1, 2023
Dell Rugged Control Center, version prior to 4.7, contains insufficient protection for the...
Moderate
Unreviewed
CVE-2023-43089
was published
Dec 1, 2023
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 17...
Moderate
Unreviewed
CVE-2023-42916
was published
Dec 1, 2023
Incorrect Access Control vulnerability in jshERP V3.3 allows attackers to obtain sensitive...
Moderate
Unreviewed
CVE-2023-48894
was published
Dec 1, 2023
Absolute path traversal vulnerability in the Systematica SMTP Adapter component (up to v2.0.1.101...
Moderate
Unreviewed
CVE-2021-35975
was published
Dec 1, 2023
A vulnerability was found in SourceCodester Book Borrower System 1.0 and classified as...
Moderate
Unreviewed
CVE-2023-6440
was published
Nov 30, 2023
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been...
Moderate
Unreviewed
CVE-2023-6442
was published
Nov 30, 2023
A vulnerability classified as problematic was found in ZenTao PMS 18.8. Affected by this...
Moderate
Unreviewed
CVE-2023-6439
was published
Nov 30, 2023
Eclipse IDE XXE in eclipse.platform
Moderate
CVE-2023-4218
was published
for
org.eclipse.jdt:org.eclipse.jdt.ui
(Maven)
Nov 30, 2023
@adobe/css-tools Improper Input Validation and Inefficient Regular Expression Complexity
Moderate
CVE-2023-48631
was published
for
@adobe/css-tools
(npm)
Nov 30, 2023
Tyler Technologies Court Case Management Plus allows a remote, unauthenticated attacker to...
Moderate
Unreviewed
CVE-2023-6343
was published
Nov 30, 2023
ProTip!
Advisories are also available from the
GraphQL API