GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,960
Composer 4,279
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,421
Pub 12
RubyGems 891
Rust 873
Swift 36

Unreviewed advisories

All unreviewed 238,901

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

322 advisories

Filter by severity

Sort by

Least recently updated

Improper Input Validation vulnerability in the upload functionality for user avatars allows... Low Unreviewed

CVE-2024-23790 was published Jan 29, 2024

There is a DLL hijacking vulnerability in ZTE ZXCLOUD iRAI, an attacker could place a fake DLL... Low Unreviewed

CVE-2023-41782 was published Jan 5, 2024

Improper input validation of a large HTTP request in the Controller 6000 and Controller 7000... Low Unreviewed

CVE-2023-22439 was published Dec 19, 2023

Adobe Experience Manager versions 6.5.18 and earlier are affected by an Improper Input Validation... Low Unreviewed

CVE-2023-48608 was published Dec 15, 2023

Improper input validation vulnerability in Newsletter Software SuperMailer affecting version 11... Low Unreviewed

CVE-2023-6381 was published Dec 13, 2023

Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to... Low Unreviewed

CVE-2023-5275 was published Nov 30, 2023

Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to... Low Unreviewed

CVE-2023-5274 was published Nov 30, 2023

Improper Input Validation in Checkmk <2.2.0p15, <2.1.0p37, <=2.0.0p39 allows priviledged... Low Unreviewed

CVE-2023-23549 was published Nov 15, 2023

Improper input validation in the BIOS firmware for some Intel(R) Processors may allow an... Low Unreviewed

CVE-2023-22329 was published Nov 14, 2023

Improper input validation for some Intel Unison software may allow an authenticated user to... Low Unreviewed

CVE-2022-45469 was published Nov 14, 2023

An issue has been discovered in GitLab EE with Advanced Search affecting all versions from 13.9... Low Unreviewed

CVE-2023-5963 was published Nov 6, 2023

Improper access control in Elenos ETG150 FM transmitter v3.12 allows attackers to make arbitrary... Low Unreviewed

CVE-2023-37833 was published Nov 1, 2023

An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior... Low Unreviewed

CVE-2023-3906 was published Sep 29, 2023

Adobe Commerce versions 2.4.6 (and earlier), 2.4.5-p2 (and earlier) and 2.4.4-p3 (and earlier)... Low Unreviewed

CVE-2023-29293 was published Jun 15, 2023

A segmentation fault flaw was found in the Advancecomp package. This may lead to decreased... Low Unreviewed

CVE-2023-2961 was published Jun 6, 2023

In onCreatePreferences of EditInfoFragment.java, there is a possible way to read contacts... Low Unreviewed

CVE-2023-20932 was published Feb 28, 2023

Improper input validation vulnerability in TelephonyUI prior to SMR Jan-2023 Release 1 allows... Low Unreviewed

CVE-2023-21428 was published Feb 9, 2023

Improper input validation in Bixby Vision prior to version 3.7.70.17 allows attacker to access... Low Unreviewed

CVE-2023-21431 was published Feb 9, 2023

Insufficient input validation in the SMU may allow a physical attacker to exfiltrate SMU memory... Low Unreviewed

CVE-2023-20528 was published Jan 11, 2023

In multiple locations, there is a possible display crash loop due to improper input validation.... Low Unreviewed

CVE-2022-20543 was published Dec 19, 2022

An input validation vulnerability exists in Openshift Enterprise due to a 1:1 mapping of tenants... Low Unreviewed

CVE-2017-7517 was published Oct 17, 2022

When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using... Low Unreviewed

CVE-2022-35252 was published Sep 25, 2022

In Core Utilities, there is a possible way to craft a malformed Uri object due to improper input... Low Unreviewed

CVE-2022-20338 was published Aug 13, 2022

In Messaging, there is a possible way to attach a private file to an SMS message due to improper... Low Unreviewed

CVE-2022-20241 was published Aug 12, 2022

In JetBrains IntelliJ IDEA before 2022.2 email address validation in the "Git User Name Is Not... Low Unreviewed

CVE-2022-37010 was published Jul 29, 2022

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

322 advisories