Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+

109,743 advisories

Loading
IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This... Moderate Unreviewed
CVE-2023-46174 was published Dec 1, 2023
IBM InfoSphere Information Server 11.7 could allow a remote attacker to cause a denial of... Moderate Unreviewed
CVE-2023-42019 was published Dec 1, 2023
IBM Planning Analytics on Cloud Pak for Data 4.0 could allow an attacker on a shared network to... Moderate Unreviewed
CVE-2023-26024 was published Dec 1, 2023
IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could... Moderate Unreviewed
CVE-2023-38268 was published Dec 1, 2023
OpenSearch StackOverflow vulnerability Moderate
GHSA-6g3j-p5g6-992f was published for org.opensearch:opensearch (Maven) Dec 1, 2023
Reflected XSS Vulnerability in dpaste Moderate
CVE-2023-49277 was published for Dpaste (pip) Dec 1, 2023
BioCla
A vulnerability exists in the input validation of the GOOSE messages where out of range values... Moderate Unreviewed
CVE-2023-4518 was published Dec 1, 2023
The Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due to... Moderate Unreviewed
CVE-2023-6449 was published Dec 1, 2023
A vulnerability of Uncontrolled Resource Consumption has been identified in STARDOM provided by... Moderate Unreviewed
CVE-2023-5915 was published Dec 1, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 10.5 before 16.4.3... Moderate Unreviewed
CVE-2023-4912 was published Dec 1, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 16.2 before 16.4.3... Moderate Unreviewed
CVE-2023-5995 was published Dec 1, 2023
An issue has been discovered in GitLab affecting all versions before 16.4.3, all versions... Moderate Unreviewed
CVE-2023-5226 was published Dec 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 9.2 before 16.4.3,... Moderate Unreviewed
CVE-2023-4317 was published Dec 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3,... Moderate Unreviewed
CVE-2023-3964 was published Dec 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 11.3 before 16.4.3,... Moderate Unreviewed
CVE-2023-3949 was published Dec 1, 2023
Dell Rugged Control Center, version prior to 4.7, contains insufficient protection for the... Moderate Unreviewed
CVE-2023-43089 was published Dec 1, 2023
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 17... Moderate Unreviewed
CVE-2023-42916 was published Dec 1, 2023
Incorrect Access Control vulnerability in jshERP V3.3 allows attackers to obtain sensitive... Moderate Unreviewed
CVE-2023-48894 was published Dec 1, 2023
Absolute path traversal vulnerability in the Systematica SMTP Adapter component (up to v2.0.1.101... Moderate Unreviewed
CVE-2021-35975 was published Dec 1, 2023
A vulnerability was found in SourceCodester Book Borrower System 1.0 and classified as... Moderate Unreviewed
CVE-2023-6440 was published Nov 30, 2023
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been... Moderate Unreviewed
CVE-2023-6442 was published Nov 30, 2023
A vulnerability classified as problematic was found in ZenTao PMS 18.8. Affected by this... Moderate Unreviewed
CVE-2023-6439 was published Nov 30, 2023
Eclipse IDE XXE in eclipse.platform Moderate
CVE-2023-4218 was published for org.eclipse.jdt:org.eclipse.jdt.ui (Maven) Nov 30, 2023
jukzi dbwiddis
@adobe/css-tools Improper Input Validation and Inefficient Regular Expression Complexity Moderate
CVE-2023-48631 was published for @adobe/css-tools (npm) Nov 30, 2023
Tyler Technologies Court Case Management Plus allows a remote, unauthenticated attacker to... Moderate Unreviewed
CVE-2023-6343 was published Nov 30, 2023
ProTip! Advisories are also available from the GraphQL API