GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,610
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,262
NuGet 760
pip 4,058
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 276,970

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,376 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The WordPress Gallery Plugin WordPress plugin before 3.39 is vulnerable to PHAR Deserialization... High Unreviewed

CVE-2023-3154 was published Oct 16, 2023

The Enable Media Replace WordPress plugin before 4.1.3 unserializes user input via the Remove... High Unreviewed

CVE-2023-4643 was published Oct 16, 2023

The Read More & Accordion WordPress plugin before 3.2.7 unserializes user input provided via the... High Unreviewed

CVE-2023-3392 was published Oct 16, 2023

Presto Changeo testsitecreator up to 1.1.1 was discovered to contain a deserialization... Critical Unreviewed

CVE-2023-43981 was published Oct 5, 2023

A?CWE-502:?Deserialization of untrusted data?vulnerability exists?that could allow an attacker... Critical Unreviewed

CVE-2023-5391 was published Oct 4, 2023

A deserialization vulnerability in Afterlogic Aurora Files v9.7.3 allows attackers to execute... High Unreviewed

CVE-2023-43176 was published Oct 3, 2023

Deyue Remote Vehicle Management System v1.1 was discovered to contain a deserialization... High Unreviewed

CVE-2023-43268 was published Oct 2, 2023

Unsafe deserialization of untrusted JSON allows execution of arbitrary code on affected releases... High Unreviewed

CVE-2023-5183 was published Sep 27, 2023

Deserialization of Untrusted Data in emlog pro v.2.1.15 and earlier allows a remote attacker to... Critical Unreviewed

CVE-2023-43291 was published Sep 27, 2023

In WS_FTP Server version 8.7.0 prior to 8.7.4 and version 8.8.0 prior to 8.8.2, a pre... High Unreviewed

CVE-2023-40044 was published Sep 27, 2023

phpPgAdmin 7.14.4 and earlier is vulnerable to deserialization of untrusted data which may lead... Critical Unreviewed

CVE-2023-40619 was published Sep 20, 2023

A vulnerability was found in spider-flow up to 0.5.0. It has been declared as critical. Affected... Moderate Unreviewed

CVE-2023-5016 was published Sep 17, 2023

A flaw was found in glib, where the gvariant deserialization code is vulnerable to a denial of... High Unreviewed

CVE-2023-32636 was published Sep 14, 2023

A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue... Moderate Unreviewed

CVE-2023-32665 was published Sep 14, 2023

Adobe ColdFusion versions 2018u18 (and earlier), 2021u8 (and earlier) and 2023u2 (and earlier)... Critical Unreviewed

CVE-2023-38204 was published Sep 14, 2023

In checkKeyIntentParceledCorrectly of AccountManagerService.java, there is a possible way to... High Unreviewed

CVE-2023-35669 was published Sep 11, 2023

The wpDataTables WordPress plugin before 2.1.66 does not validate the "Serialized PHP array"... High Unreviewed

CVE-2023-4314 was published Sep 11, 2023

An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary... Critical Unreviewed

CVE-2020-19559 was published Sep 11, 2023

Unsafe deserialization in JSCAPE MFT Server versions prior to 2023.1.9 (Windows, Linux, and MacOS... High Unreviewed

CVE-2023-4528 was published Sep 7, 2023

Version 10.11 of webMethods OneData runs an embedded instance of Azul Zulu Java 11.0.15 which... Critical Unreviewed

CVE-2023-0925 was published Sep 6, 2023

Dell Alienware Command Center, versions prior to 5.5.51.0, contain a deserialization of... High Unreviewed

CVE-2023-28072 was published Sep 4, 2023

In Splunk Enterprise versions lower than 8.2.12, 9.0.6, and 9.1.1, an attacker can execute a... High Unreviewed

CVE-2023-40595 was published Aug 30, 2023

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to... Critical Unreviewed

CVE-2023-3259 was published Aug 14, 2023

Deserialization vulnerability in the input module. Successful exploitation of this vulnerability... High Unreviewed

CVE-2023-39396 was published Aug 13, 2023

IBM SDK, Java Technology Edition 7.1.5.18 and 8.0.8.0 could allow a remote attacker to execute... Critical Unreviewed

CVE-2022-40609 was published Aug 2, 2023

Previous 1…32…56 Next

Previous 1 2 … 30 31 32 33 34 … 55 56 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,376 advisories