GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,156

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,007 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

aEnrich Technology a+HRD has a vulnerability of Deserialization of Untrusted Data within its MSMQ... Critical Unreviewed

CVE-2023-20853 was published Apr 27, 2023

aEnrich Technology a+HRD has a vulnerability of Deserialization of Untrusted Data within its MSMQ... Critical Unreviewed

CVE-2023-20852 was published Apr 27, 2023

An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could... High Unreviewed

CVE-2023-2141 was published Apr 21, 2023

VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated,... Critical Unreviewed

CVE-2023-20864 was published Apr 20, 2023

A deserialization vulnerability in the destruct() function of Laravel v8.5.9 allows attackers to... Critical Unreviewed

CVE-2021-28254 was published Apr 19, 2023

A vulnerability, which was classified as problematic, has been found in DataGear up to 4.5.1.... Moderate Unreviewed

CVE-2023-2042 was published Apr 14, 2023

The WP Meta SEO WordPress plugin before 4.5.5 does not validate image file paths before... High Unreviewed

CVE-2023-1381 was published Apr 10, 2023

Apache Linkis JDBC EngineConn has deserialization vulnerability Critical

CVE-2023-29215 was published for org.apache.linkis:linkis-engineconn (Maven) Apr 10, 2023

Apache Linkis DatasourceManager module has deserialization vulnerability Critical

CVE-2023-29216 was published for org.apache.linkis:linkis-datasource (Maven) Apr 10, 2023

** UNSUPPORTED WHEN ASSIGNED ** A Java insecure deserialization vulnerability in Adobe LiveCycle... Critical Unreviewed

CVE-2023-28500 was published Apr 6, 2023

A vulnerability in the web-based management interface of Cisco Secure Network Analytics could... High Unreviewed

CVE-2023-20102 was published Apr 5, 2023

Deserialization of Untrusted Data in GitHub repository microweber/microweber prior to 1.3.3. Unknown Unreviewed

CVE-2023-1876 was published Apr 5, 2023

An issue found in Zend Framework v.3.1.3 and before allow a remote attacker to execute arbitrary... Critical Unreviewed

CVE-2020-29312 was published Apr 4, 2023

Payara Server allows remote attackers to load malicious code on the server once a JNDI directory scan is performed Critical

CVE-2023-28462 was published for fish.payara.server:payara-aggregator (Maven) Mar 30, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed

CVE-2022-36977 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2022-28685 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2022-2561 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2022-36971 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed

CVE-2022-36978 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2022-37378 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed

CVE-2022-36974 was published Mar 29, 2023

The InputMethod module has a vulnerability of serialization/deserialization mismatch. Successful... High Unreviewed

CVE-2023-26547 was published Mar 28, 2023

The pgmng module has a vulnerability in serialization/deserialization. Successful exploitation of... High Unreviewed

CVE-2023-26548 was published Mar 28, 2023

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 are affected by a... High Unreviewed

CVE-2023-1139 was published Mar 27, 2023

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 are affected by a... High Unreviewed

CVE-2023-1145 was published Mar 27, 2023

Previous 1…44…81 Next

Previous 1 2 … 42 43 44 45 46 … 80 81 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,007 advisories