Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,873 advisories

Loading
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ProfilePress... High Unreviewed
CVE-2023-44150 was published Nov 30, 2023
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Exactly WWW EWWW... High Unreviewed
CVE-2023-40600 was published Nov 30, 2023
Apache DolphinScheduler sensitive information disclosure High
CVE-2023-48796 was published for apache-dolphinscheduler (Maven) Nov 24, 2023
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Botanik Software... High Unreviewed
CVE-2023-5983 was published Nov 22, 2023
Attacker can cause Kyverno user to unintentionally consume insecure image High
CVE-2023-47630 was published for github.com/kyverno/kyverno (Go) Nov 14, 2023
AdamKorcz
Credited to AdamKorcz
Label Studio Object Relational Mapper Leak Vulnerability in Filtering Task High
CVE-2023-47117 was published for label-studio (pip) Nov 14, 2023
alex-elttam
Credited to alex-elttam
Apache Airflow vulnerable to Exposure of Sensitive Information to an Unauthorized Actor High
CVE-2023-42781 was published for apache-airflow (pip) Nov 12, 2023
Keep-alive vulnerability in the sticky broadcast mechanism. Successful exploitation of this... High Unreviewed
CVE-2023-46757 was published Nov 8, 2023
Vulnerability of missing encryption in the card management module. Successful exploitation of... High Unreviewed
CVE-2023-44098 was published Nov 8, 2023
Vulnerability of improper permission control in the Booster module. Impact: Successful... High Unreviewed
CVE-2023-44115 was published Nov 8, 2023
A design flaw was found in Samba's DirSync control implementation, which exposes passwords and... High Unreviewed
CVE-2023-4154 was published Nov 7, 2023
Best Practical Request Tracker (RT) before 4.4.7 and 5.x before 5.0.5 allows Information... High Unreviewed
CVE-2023-41259 was published Nov 3, 2023
Best Practical Request Tracker (RT) before 4.4.7 and 5.x before 5.0.5 allows Information Exposure... High Unreviewed
CVE-2023-41260 was published Nov 3, 2023
Best Practical Request Tracker (RT) 5 before 5.0.5 allows Information Disclosure via a... High Unreviewed
CVE-2023-45024 was published Nov 3, 2023
An information leak in Gyouza-newhushimi v13.6.1 allows attackers to obtain the channel access... High Unreviewed
CVE-2023-39042 was published Nov 3, 2023
An information leak in shouzu sweets oz v13.6.1 allows attackers to obtain the channel access... High Unreviewed
CVE-2023-39047 was published Nov 3, 2023
An information leak in Tokudaya.ekimae_mc v13.6.1 allows attackers to obtain the channel access... High Unreviewed
CVE-2023-39054 was published Nov 3, 2023
An information leak in Hattoriya v13.6.1 allows attackers to obtain the channel access token and... High Unreviewed
CVE-2023-39053 was published Nov 3, 2023
An information leak in VISION MEAT WORKS Track Diner 10/10mbl v13.6.1 allows attackers to obtain... High Unreviewed
CVE-2023-39051 was published Nov 3, 2023
An information leak in Daiky-value.Fukueten v13.6.1 allows attackers to obtain the channel access... High Unreviewed
CVE-2023-39050 was published Nov 3, 2023
An information leak in Tokudaya.honten v13.6.1 allows attackers to obtain the channel access... High Unreviewed
CVE-2023-39048 was published Nov 3, 2023
An information leak in hirochanKAKIwaiting v13.6.1 allows attackers to obtain the channel access... High Unreviewed
CVE-2023-39057 was published Nov 3, 2023
An information disclosure vulnerability has been identified in the Lenovo App Store which may... High Unreviewed
CVE-2022-3611 was published Oct 27, 2023
An information disclosure vulnerability in the component users-grid-data.php of Ocomon before v4... High Unreviewed
CVE-2023-33558 was published Oct 26, 2023
An issue in Anglaise Company Anglaise.Company v.13.6.1 allows a remote attacker to obtain... High Unreviewed
CVE-2023-38845 was published Oct 26, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database