Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

91,086 advisories

Loading
Bashis, a Security Researcher at IPVM has found a flaw that allows for a remote code execution... High Unreviewed
CVE-2023-5747 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Lucian Apostol Auto Affiliate Links allows... High Unreviewed
CVE-2023-47652 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Stark Digital Category Post List Widget allows... High Unreviewed
CVE-2023-47516 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in phoeniixx Custom My Account for Woocommerce... High Unreviewed
CVE-2023-46634 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Jeff Sherk Auto Login New User After... High Unreviewed
CVE-2023-46201 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability leading to Local File Inclusion (LF) in Webpushr... High Unreviewed
CVE-2023-35041 was published Nov 13, 2023
Server-Side Request Forgery (SSRF) vulnerability in Vova Anokhin WP Shortcodes Plugin —... High Unreviewed
CVE-2023-23800 was published Nov 13, 2023
Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint... High Unreviewed
CVE-2023-28134 was published Nov 13, 2023
Cross-Site Request Forgery (CSRF) vulnerability in WPIndeed Debug Assistant plugin <= 1.4 versions. High Unreviewed
CVE-2023-26516 was published Nov 13, 2023
Using the --fragment option in certain configuration setups OpenVPN version 2.6.0 to 2.6.6 allows... High Unreviewed
CVE-2023-46849 was published Nov 11, 2023
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-36027 was published Nov 10, 2023
An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the... High Unreviewed
CVE-2023-39295 was published Nov 10, 2023
A CWE-269: Improper Privilege Management vulnerability exists in Telit Cinterion BGS5, Telit... High Unreviewed
CVE-2023-47611 was published Nov 10, 2023
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the... High Unreviewed
CVE-2023-41284 was published Nov 10, 2023
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the... High Unreviewed
CVE-2023-41285 was published Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in SuPlugins Superb Social Media Share Buttons... High Unreviewed
CVE-2023-29428 was published Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Robert Schulz (sprd.Net AG) Spreadshop plugin ... High Unreviewed
CVE-2023-29426 was published Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in ReCorp Export WP Page to Static HTML/CSS... High Unreviewed
CVE-2023-31077 was published Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Tribulant Newsletters plugin <= 4.8.8 versions. High Unreviewed
CVE-2023-30478 was published Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in PressTigers Simple Job Board plugin <= 2.10.3... High Unreviewed
CVE-2023-29440 was published Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Marco Steinbrecher WP BrowserUpdate plugin <=... High Unreviewed
CVE-2023-31078 was published Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants... High Unreviewed
CVE-2023-31235 was published Nov 10, 2023
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-36024 was published Nov 10, 2023
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2023-36014 was published Nov 10, 2023
Cross-Site Request Forgery (CSRF) vulnerability in E4J s.R.L. VikBooking Hotel Booking Engine &... High Unreviewed
CVE-2023-32501 was published Nov 10, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database