GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,480
Erlang
29
GitHub Actions
16
Go
1,694
Maven
4,935
npm
3,466
NuGet
601
pip
2,971
Pub
10
RubyGems
825
Rust
767
Swift
34
Unreviewed advisories
All unreviewed
5,000+
3,425 advisories
Filter by severity
Improper Control of Generation of Code ('Code Injection') vulnerability in Soft8Soft LLC Verge3D...
Critical
Unreviewed
CVE-2023-51420
was published
Dec 29, 2023
Improper Control of Generation of Code ('Code Injection') vulnerability in TienCOP WP EXtra.This...
Critical
Unreviewed
CVE-2023-46623
was published
Dec 29, 2023
Improper Control of Generation of Code ('Code Injection') vulnerability in Kanban for WordPress...
Critical
Unreviewed
CVE-2023-40606
was published
Dec 29, 2023
Improper Control of Generation of Code ('Code Injection') vulnerability in POSIMYTH Nexter...
Critical
Unreviewed
CVE-2023-45751
was published
Dec 29, 2023
Improper Control of Generation of Code ('Code Injection') vulnerability in Milan Dinić Rename...
Critical
Unreviewed
CVE-2023-32095
was published
Dec 29, 2023
Improper Control of Generation of Code ('Code Injection') vulnerability in Qode Interactive Qode...
Critical
Unreviewed
CVE-2023-47840
was published
Dec 29, 2023
Improper Control of Generation of Code ('Code Injection') vulnerability in David F. Carr...
Critical
Unreviewed
CVE-2023-25054
was published
Dec 29, 2023
Improper Control of Generation of Code ('Code Injection') vulnerability in BinaryStash WP Booklet...
High
Unreviewed
CVE-2023-22677
was published
Dec 29, 2023
ShifuML shifu code injection vulnerability
Moderate
CVE-2023-7148
was published
for
ml.shifu:shifu
(Maven)
Dec 29, 2023
SeaCMS v12.9 was discovered to contain a remote code execution (RCE) vulnerability via the...
High
Unreviewed
CVE-2023-46987
was published
Dec 28, 2023
An issue in ArtistScope ArtisBrowser v.34.1.5 and before allows an attacker to bypass intended...
Critical
Unreviewed
CVE-2023-49000
was published
Dec 28, 2023
An issue in Indi Browser (aka kvbrowser) v.12.11.23 allows an attacker to bypass intended access...
Critical
Unreviewed
CVE-2023-49001
was published
Dec 28, 2023
The com.phlox.tvwebbrowser TV Bro application through 2.0.0 for Android mishandles external...
Critical
Unreviewed
CVE-2023-43955
was published
Dec 27, 2023
The com.altamirano.fabricio.tvbrowser TV browser application through 4.5.1 for Android is...
Critical
Unreviewed
CVE-2023-47883
was published
Dec 27, 2023
An issue in Shenzhen TCL Browser TV Web BrowseHere (aka com.tcl.browser) 6.65...
Critical
Unreviewed
CVE-2023-43481
was published
Dec 27, 2023
Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet:...
High
Unreviewed
CVE-2023-7101
was published
Dec 25, 2023
The Zabbix Agent 2 item key smart.disk.get does not sanitize its parameters before passing them...
Critical
Unreviewed
CVE-2023-32728
was published
Dec 22, 2023
An issue in D-Link DIR-850L v.B1_FW223WWb01 allows a remote attacker to execute arbitrary code...
Critical
Unreviewed
CVE-2023-49004
was published
Dec 20, 2023
Cambium ePMP Force 300-25 version 4.7.0.1 is vulnerable to a code injection vulnerability that...
High
Unreviewed
CVE-2023-6691
was published
Dec 18, 2023
A vulnerability classified as problematic was found in rmountjoy92 DashMachine 0.5-4. Affected by...
Moderate
Unreviewed
CVE-2023-6899
was published
Dec 17, 2023
A vulnerability was found in kalcaddle KodExplorer up to 4.51.03. It has been rated as critical....
Moderate
Unreviewed
CVE-2023-6851
was published
Dec 16, 2023
Remote code execution/programming rights with configuration section from any user account
Critical
CVE-2023-50723
was published
for
org.xwiki.platform:xwiki-platform-administration-ui
(Maven)
Dec 16, 2023
Remote code execution from account through SearchAdmin
Critical
CVE-2023-50721
was published
for
org.xwiki.platform:xwiki-platform-search-ui
(Maven)
Dec 16, 2023
An issue has been discovered in GitLab CE/EE affecting all versions before 16.4.4, all versions...
Moderate
Unreviewed
CVE-2023-6051
was published
Dec 15, 2023
An issue has been discovered in GitLab CE/EE affecting all versions from 16.3 before 16.4.4, all...
Moderate
Unreviewed
CVE-2023-5512
was published
Dec 15, 2023
ProTip!
Advisories are also available from the
GraphQL API