Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,286
Erlang
31
GitHub Actions
21
Go
2,058
Maven
5,000+
npm
3,742
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

557 advisories

Loading
The vulnerability is the use of implicit PendingIntents with the PendingIntent.FLAG_MUTABLE set... High Unreviewed
CVE-2023-44123 was published Sep 27, 2023
The vulnerability is the use of implicit PendingIntents without the PendingIntent.FLAG_IMMUTABLE... High Unreviewed
CVE-2023-44125 was published Sep 27, 2023
Dell NetWorker, Version 19.7 has an improper authorization vulnerability in the NetWorker client... High Unreviewed
CVE-2023-28055 was published Sep 27, 2023
A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki... High Unreviewed
CVE-2023-0813 was published Sep 15, 2023
Implicit intent hijacking vulnerability in Camera prior to versions 11.0.16.43 in Android 11, 12... Moderate Unreviewed
CVE-2023-30730 was published Sep 6, 2023
Intent redirection vulnerability in PackageInstallerCHN prior to version 13.1.03.00 allows local... Moderate Unreviewed
CVE-2023-30728 was published Sep 6, 2023
Improper authorization vulnerability in FolderContainerDragDelegate in One UI Home prior to SMR... Moderate Unreviewed
CVE-2023-30714 was published Sep 6, 2023
Improper authorization in Samsung Keyboard prior to SMR Sep-2023 Release 1 allows attacker to... Moderate Unreviewed
CVE-2023-30706 was published Sep 6, 2023
Improper authorization in the Intel(R) NUC Pro Software Suite for Windows before version 2.0.0.9... Moderate Unreviewed
CVE-2023-28385 was published Aug 11, 2023
Improper Authorization vulnerability in Samsung Internet prior to version 22.0.0.35 allows... Moderate Unreviewed
CVE-2023-30704 was published Aug 10, 2023
The FULL - Customer plugin for WordPress is vulnerable to Arbitrary File Upload via the /install... High Unreviewed
CVE-2023-4243 was published Aug 9, 2023
The ACF Photo Gallery Field plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed
CVE-2023-3957 was published Jul 27, 2023
Improper privilege validation in Command Centre Server allows authenticated unprivileged... Moderate Unreviewed
CVE-2023-23568 was published Jul 25, 2023
Improper privilege validation in Command Centre Server allows authenticated unprivileged... Moderate Unreviewed
CVE-2023-25074 was published Jul 25, 2023
Improper privilege validation in Command Centre Server allows authenticated operators to modify... Moderate Unreviewed
CVE-2023-22428 was published Jul 25, 2023
Wyse Management Suite versions prior to 4.0 contain an improper authorization vulnerability. An... Moderate Unreviewed
CVE-2023-32482 was published Jul 20, 2023
The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed
CVE-2023-1910 was published Jul 6, 2023
In Splunk Enterprise versions below 9.0.5, 8.2.11. and 8.1.14, and Splunk Cloud Platform versions... Moderate Unreviewed
CVE-2023-32709 was published Jul 6, 2023
In versions of Splunk Enterprise below 9.0.5, 8.2.11, and 8.1.14, and Splunk Cloud Platform below... High Unreviewed
CVE-2023-32707 was published Jul 6, 2023
Improper Authorization vulnerability in OTRS AG OTRS 8 (Websocket API backend) allows any as... High Unreviewed
CVE-2023-2534 was published Jul 6, 2023
In Splunk Enterprise versions below 8.1.13 and 8.2.10, the ‘createrss’ external search command... Moderate Unreviewed
CVE-2023-22931 was published Jul 6, 2023
In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, the ‘sendemail’ REST API endpoint... Moderate Unreviewed
CVE-2023-22938 was published Jul 6, 2023
A CWE-285: Improper Authorization vulnerability exists that could cause Denial of Service against... High Unreviewed
CVE-2023-22610 was published Jul 6, 2023
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a... High Unreviewed
CVE-2023-25517 was published Jul 4, 2023
The affected TBox RTUs allow low privilege users to access software security tokens of higher... Moderate Unreviewed
CVE-2023-36611 was published Jul 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database