Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
50
Go
3,630
Maven
5,000+
npm
5,000+
NuGet
928
pip
4,850
Pub
13
RubyGems
1,045
Rust
1,301
Swift
53
Unreviewed advisories
All unreviewed
5,000+

29,903 advisories

Loading
RemoteClinic version 2.0 contains a SQL injection vulnerability in the /staff/edit.php file. Critical Unreviewed
CVE-2023-33479 was published Nov 14, 2023
Tenda AX1806 V1.0.0.1 contains a stack overflow vulnerability in function sub_455D4, called by... Critical Unreviewed
CVE-2023-47456 was published Nov 14, 2023
Tenda AX1806 V1.0.0.1 contains a heap overflow vulnerability in setSchedWifi function, in which... Critical Unreviewed
CVE-2023-47455 was published Nov 14, 2023
Blind SQL injection in api_version parameter in Tyk Gateway version 5.0.3 allows attacker to... Critical Unreviewed
CVE-2023-42284 was published Nov 14, 2023
Blind SQL injection in api_id parameter in Tyk Gateway version 5.0.3 allows attacker to access... Critical Unreviewed
CVE-2023-42283 was published Nov 14, 2023
A vulnerability in Veeam ONE allows an unauthenticated user to gain information about the SQL... Critical Unreviewed
CVE-2023-38547 was published Nov 14, 2023
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute. Critical Unreviewed
CVE-2023-33045 was published Nov 14, 2023
A improper neutralization of special elements used in an os command ('os command injection') in... Critical Unreviewed
CVE-2023-36553 was published Nov 14, 2023
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability Critical Unreviewed
CVE-2023-36028 was published Nov 14, 2023
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability Critical Unreviewed
CVE-2023-36397 was published Nov 14, 2023
A improper neutralization of special elements used in an sql command ('sql injection') in... Critical Unreviewed
CVE-2023-34991 was published Nov 14, 2023
Memory Corruption in Multi-mode Call Processor while processing bit mask API. Critical Unreviewed
CVE-2023-22388 was published Nov 14, 2023
A vulnerability has been identified in COMOS (All versions < V10.4.4). Ptmcast executable used... Critical Unreviewed
CVE-2023-43504 was published Nov 14, 2023
A vulnerability has been identified in COMOS (All versions). The affected application lacks... Critical Unreviewed
CVE-2023-43505 was published Nov 14, 2023
A vulnerability has been identified in COMOS (All versions). The affected application lacks... Critical Unreviewed
CVE-2023-46601 was published Nov 14, 2023
A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All versions < V4.5), SCALANCE... Critical Unreviewed
CVE-2023-44373 was published Nov 14, 2023
A heap-based buffer overflow vulnerability exists in the HTTP Server form boundary functionality... Critical Unreviewed
CVE-2023-27882 was published Nov 14, 2023
A memory corruption vulnerability exists in the HTTP Server form boundary functionality of Weston... Critical Unreviewed
CVE-2023-28379 was published Nov 14, 2023
A memory corruption vulnerability exists in the HTTP Server header parsing functionality of... Critical Unreviewed
CVE-2023-28391 was published Nov 14, 2023
A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston... Critical Unreviewed
CVE-2023-25181 was published Nov 14, 2023
A memory corruption vulnerability exists in the HTTP Server Host header parsing functionality of... Critical Unreviewed
CVE-2023-31247 was published Nov 14, 2023
Incorrect access control in the Forgot Your Password function of EMSigner v2.8.7 allows... Critical Unreviewed
CVE-2023-43902 was published Nov 14, 2023
GibbonEdu Gibbon version 25.0.1 and before allows Arbitrary File Write because... Critical Unreviewed
CVE-2023-45878 was published Nov 14, 2023
SAP Business One installation - version 10.0, does not perform proper authentication and... Critical Unreviewed
CVE-2023-31403 was published Nov 14, 2023
Improper Restriction of Excessive Authentication Attempts in GitHub repository linagora/twake... Critical Unreviewed
CVE-2023-2675 was published Nov 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database