GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
4,434 advisories
Filter by severity
Suricata before 1.4.6 allows remote attackers to cause a denial of service (crash) via a...
Moderate
Unreviewed
CVE-2013-5919
was published
May 14, 2022
Given a compromised sandboxed content process due to a separate vulnerability, it is possible to...
Moderate
Unreviewed
CVE-2019-9812
was published
May 24, 2022
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could...
Moderate
Unreviewed
CVE-2023-47746
was published
Jan 22, 2024
A URL parameter during login flow was vulnerable to injection. An attacker could insert a...
Moderate
Unreviewed
CVE-2023-28799
was published
Jun 22, 2023
On Microchip RN4870 devices, when more than one consecutive PairReqNoInputNoOutput request is ...
Moderate
Unreviewed
CVE-2024-29155
was published
Oct 16, 2024
TAIWAN-CA(TWCA) JCICSecurityTool's Registry-related functions have insufficient filtering for...
Moderate
Unreviewed
CVE-2023-48387
was published
Dec 15, 2023
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &...
Moderate
Unreviewed
CVE-2024-9507
was published
Oct 11, 2024
Improper input validation in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version...
Moderate
Unreviewed
CVE-2023-24463
was published
Oct 10, 2024
PAX A920Pro/A50 devices with PayDroid_8.1.0_Sagittarius_V11.1.50_20230614 or earlier can allow...
Moderate
Unreviewed
CVE-2023-42135
was published
Jan 15, 2024
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-1641.
Moderate
Unreviewed
CVE-2021-1717
was published
May 24, 2022
An improper input validation vulnerability has been discovered that could allow an adversary to...
Moderate
Unreviewed
CVE-2023-29446
was published
Jan 10, 2024
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-1717.
Moderate
Unreviewed
CVE-2021-1641
was published
May 24, 2022
An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, 1.39.x...
Moderate
Unreviewed
CVE-2023-36674
was published
Aug 20, 2023
Bandisoft BandiView 7.05 is Incorrect Access Control via sub_0x232bd8 resulting in denial of...
Moderate
Unreviewed
CVE-2024-45871
was published
Oct 3, 2024
Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high...
Moderate
Unreviewed
CVE-2023-1620
was published
Jun 26, 2023
Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high...
Moderate
Unreviewed
CVE-2023-1619
was published
Jun 26, 2023
Improper Input Validation vulnerability in PHOENIX CONTACT FL/TC MGUARD Family in multiple...
Moderate
Unreviewed
CVE-2023-2673
was published
Jun 13, 2023
In connectivity system driver, there is a possible out of bounds write due to improper input...
Moderate
Unreviewed
CVE-2023-32811
was published
Sep 4, 2023
The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain...
Moderate
Unreviewed
CVE-2024-8445
was published
Sep 5, 2024
A Improper Input Validation issue affecting the v2_sdk_service running on a set of DJI drone...
Moderate
Unreviewed
CVE-2023-51456
was published
Apr 2, 2024
Improper input validation in Zoom Desktop Client for Windows before 5.15.5 may allow an...
Moderate
Unreviewed
CVE-2023-39209
was published
Aug 9, 2023
HTML and SMTP injections on the registration page of LiquidFiles versions 3.7.13 and below, allow...
Moderate
Unreviewed
CVE-2023-4393
was published
Oct 30, 2023
Improper Input Validation vulnerability in Hitachi Energy MicroSCADA X SYS600 while reading a...
Moderate
Unreviewed
CVE-2022-1778
was published
Sep 15, 2022
In camera middleware, there is a possible out of bounds write due to a missing input validation....
Moderate
Unreviewed
CVE-2023-32827
was published
Oct 2, 2023
In camera middleware, there is a possible out of bounds write due to a missing input validation....
Moderate
Unreviewed
CVE-2023-32826
was published
Oct 2, 2023
ProTip!
Advisories are also available from the
GraphQL API