GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
91,086 advisories
Filter by severity
Cross-Site Request Forgery (CSRF) vulnerability in Didier Sampaolo SpamReferrerBlock plugin <= 2...
High
Unreviewed
CVE-2023-34371
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Peter Shaw LH Password Changer plugin <= 1.55...
High
Unreviewed
CVE-2023-34182
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Kenth Hagström WP-Cache.Com plugin <= 1.1.1...
High
Unreviewed
CVE-2023-34177
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in SAKURA Internet Inc. TS Webfonts for ?????????...
High
Unreviewed
CVE-2023-34169
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Groundhogg Inc. Groundhogg plugin <= 2.7.11...
High
Unreviewed
CVE-2023-34178
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in WebberZone Top 10 – WordPress Popular posts by...
High
Unreviewed
CVE-2023-47238
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Martin Gibson Auto Publish for Google My...
High
Unreviewed
CVE-2023-47237
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Malinky Ajax Pagination and Infinite Scroll...
High
Unreviewed
CVE-2023-34033
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Alex Raven WP Report Post plugin <= 2.1.2...
High
Unreviewed
CVE-2023-34171
was published
Nov 9, 2023
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists in Telit Cinterion...
High
Unreviewed
CVE-2023-47610
was published
Nov 9, 2023
The filepath package does not recognize paths with a \??\ prefix as special. On Windows, a path...
High
Unreviewed
CVE-2023-45283
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in WPClever WPC Smart Wishlist for WooCommerce...
High
Unreviewed
CVE-2023-34386
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in JoomSky JS Job Manager plugin <= 2.0.0 versions.
High
Unreviewed
CVE-2023-31087
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in WP Inventory Manager plugin <= 2.1.0.13 versions.
High
Unreviewed
CVE-2023-34002
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Mat Bao Corp WP Helper Premium plugin <= 4.5.1...
High
Unreviewed
CVE-2023-46614
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Frédéric Sheedy Etsy Shop plugin <= 3.0.3...
High
Unreviewed
CVE-2023-25975
was published
Nov 9, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Alex Benfica Publish to Schedule plugin <= 4.4...
High
Unreviewed
CVE-2023-25994
was published
Nov 9, 2023
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution...
High
Unreviewed
CVE-2023-40054
was published
Nov 9, 2023
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution...
High
Unreviewed
CVE-2023-40055
was published
Nov 9, 2023
The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands...
High
Unreviewed
CVE-2023-41138
was published
Nov 9, 2023
Symmetric encryption used to protect messages between the AppsAnywhere server and client can be...
High
Unreviewed
CVE-2023-41137
was published
Nov 9, 2023
An issue in Combodo iTop v.3.1.0-2-11973 allows a local attacker to execute arbitrary code via a...
High
Unreviewed
CVE-2023-47489
was published
Nov 9, 2023
Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220,
CB6231, B8520, B8220, and CD321
...
High
Unreviewed
CVE-2023-4249
was published
Nov 9, 2023
An uncontrolled search path vulnerability was reported in Lenovo System Update that could allow...
High
Unreviewed
CVE-2023-4632
was published
Nov 9, 2023
A privilege escalation vulnerability was reported in Lenovo preloaded devices deployed using...
High
Unreviewed
CVE-2023-4706
was published
Nov 9, 2023
ProTip!
Advisories are also available from the
GraphQL API