Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,168
Erlang
30
GitHub Actions
19
Go
1,975
Maven
5,000+
npm
3,698
NuGet
654
pip
3,314
Pub
11
RubyGems
882
Rust
831
Swift
35
Unreviewed advisories
All unreviewed
5,000+

98,853 advisories

Loading
An issue was discovered in savignano S/Notify before 4.0.2 for Jira. While an administrative user... High Unreviewed
CVE-2023-50930 was published Jan 9, 2024
A vulnerability has been found in Totolink N350RT 9.3.5u.6139_B202012 and classified as critical.... High Unreviewed
CVE-2023-7219 was published Jan 9, 2024
Under certain conditions the Microsoft Edge browser extension (SAP GUI connector for Microsoft... High Unreviewed
CVE-2024-22125 was published Jan 9, 2024
In SAP Application Interface Framework File Adapter - version 702, a high privilege user can use... High Unreviewed
CVE-2024-21737 was published Jan 9, 2024
TP-Link Tapo APK up to v2.12.703 uses hardcoded credentials for access to the login panel. High Unreviewed
CVE-2023-27098 was published Jan 9, 2024
SAP LT Replication Server - version S4CORE 103, S4CORE 104, S4CORE 105, S4CORE 106, S4CORE 107,... High Unreviewed
CVE-2024-21735 was published Jan 9, 2024
FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ... High Unreviewed
CVE-2023-52072 was published Jan 9, 2024
FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ... High Unreviewed
CVE-2023-52073 was published Jan 9, 2024
SQL injection vulnerability in EmpireCMS v7.5, allows remote attackers to execute arbitrary code... High Unreviewed
CVE-2023-50162 was published Jan 9, 2024
FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component... High Unreviewed
CVE-2023-52074 was published Jan 9, 2024
WALLIX Bastion 7.x, 8.x, 9.x and 10.x and WALLIX Access Manager 3.x and 4.x have Incorrect Access... High Unreviewed
CVE-2023-49961 was published Jan 8, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2023-52142 was published Jan 8, 2024
A vulnerability, which was classified as critical, was found in Totolink N350RT 9.3.5u... High Unreviewed
CVE-2023-7218 was published Jan 8, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2023-52213 was published Jan 8, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2023-52204 was published Jan 8, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2023-52201 was published Jan 8, 2024
Deserialization of Untrusted Data vulnerability in Live Composer Team Page Builder: Live Composer... High Unreviewed
CVE-2023-52206 was published Jan 8, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2023-52196 was published Jan 8, 2024
It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds... High Unreviewed
CVE-2021-3600 was published Jan 8, 2024
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WP Swings Coupon... High Unreviewed
CVE-2023-52190 was published Jan 8, 2024
The Essential Real Estate WordPress plugin before 4.4.0 does not prevent users with limited... High Unreviewed
CVE-2023-6140 was published Jan 8, 2024
PowerSYSTEM Center versions 2020 Update 16 and prior contain a vulnerability that may allow an... High Unreviewed
CVE-2023-6631 was published Jan 8, 2024
The Migrate WordPress Website & Backups WordPress plugin before 1.9.3 does not prevent directory... High Unreviewed
CVE-2023-6505 was published Jan 8, 2024
The Ni Purchase Order(PO) For WooCommerce WordPress plugin through 1.2.1 does not validate logo... High Unreviewed
CVE-2023-5957 was published Jan 8, 2024
The Slider Revolution WordPress plugin before 6.6.19 does not prevent users with at least the... High Unreviewed
CVE-2023-6528 was published Jan 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database