GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
91,086 advisories
Filter by severity
Bashis, a Security Researcher at IPVM has found a flaw that allows for a remote code execution...
High
Unreviewed
CVE-2023-5747
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Lucian Apostol Auto Affiliate Links allows...
High
Unreviewed
CVE-2023-47652
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Stark Digital Category Post List Widget allows...
High
Unreviewed
CVE-2023-47516
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in phoeniixx Custom My Account for Woocommerce...
High
Unreviewed
CVE-2023-46634
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Jeff Sherk Auto Login New User After...
High
Unreviewed
CVE-2023-46201
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability leading to Local File Inclusion (LF) in Webpushr...
High
Unreviewed
CVE-2023-35041
was published
Nov 13, 2023
Server-Side Request Forgery (SSRF) vulnerability in Vova Anokhin WP Shortcodes Plugin —...
High
Unreviewed
CVE-2023-23800
was published
Nov 13, 2023
Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint...
High
Unreviewed
CVE-2023-28134
was published
Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in WPIndeed Debug Assistant plugin <= 1.4 versions.
High
Unreviewed
CVE-2023-26516
was published
Nov 13, 2023
Using the --fragment option in certain configuration setups OpenVPN version 2.6.0 to 2.6.6 allows...
High
Unreviewed
CVE-2023-46849
was published
Nov 11, 2023
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2023-36027
was published
Nov 10, 2023
An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the...
High
Unreviewed
CVE-2023-39295
was published
Nov 10, 2023
A CWE-269: Improper Privilege Management vulnerability exists in Telit Cinterion BGS5, Telit...
High
Unreviewed
CVE-2023-47611
was published
Nov 10, 2023
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the...
High
Unreviewed
CVE-2023-41284
was published
Nov 10, 2023
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the...
High
Unreviewed
CVE-2023-41285
was published
Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in SuPlugins Superb Social Media Share Buttons...
High
Unreviewed
CVE-2023-29428
was published
Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Robert Schulz (sprd.Net AG) Spreadshop plugin ...
High
Unreviewed
CVE-2023-29426
was published
Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in ReCorp Export WP Page to Static HTML/CSS...
High
Unreviewed
CVE-2023-31077
was published
Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Tribulant Newsletters plugin <= 4.8.8 versions.
High
Unreviewed
CVE-2023-30478
was published
Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in PressTigers Simple Job Board plugin <= 2.10.3...
High
Unreviewed
CVE-2023-29440
was published
Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Marco Steinbrecher WP BrowserUpdate plugin <=...
High
Unreviewed
CVE-2023-31078
was published
Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants...
High
Unreviewed
CVE-2023-31235
was published
Nov 10, 2023
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2023-36024
was published
Nov 10, 2023
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2023-36014
was published
Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in E4J s.R.L. VikBooking Hotel Booking Engine &...
High
Unreviewed
CVE-2023-32501
was published
Nov 10, 2023
ProTip!
Advisories are also available from the
GraphQL API