GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,819

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,372 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed

CVE-2022-36977 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2022-36971 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2022-28685 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2022-2561 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2022-37378 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed

CVE-2022-36978 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed

CVE-2022-36974 was published Mar 29, 2023

The InputMethod module has a vulnerability of serialization/deserialization mismatch. Successful... High Unreviewed

CVE-2023-26547 was published Mar 28, 2023

The pgmng module has a vulnerability in serialization/deserialization. Successful exploitation of... High Unreviewed

CVE-2023-26548 was published Mar 28, 2023

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contain a vulnerability in... Critical Unreviewed

CVE-2023-1133 was published Mar 27, 2023

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 are affected by a... High Unreviewed

CVE-2023-1139 was published Mar 27, 2023

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 are affected by a... High Unreviewed

CVE-2023-1145 was published Mar 27, 2023

Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) are... Critical Unreviewed

CVE-2023-26359 was published Mar 23, 2023

The Lead Generated WordPress Plugin, version <= 1.23, was affected by an unauthenticated insecure... Critical Unreviewed

CVE-2023-28667 was published Mar 22, 2023

A CWE-502: Deserialization of Untrusted Data vulnerability exists in the Dashboard module that... High Unreviewed

CVE-2023-27978 was published Mar 21, 2023

CleverStupidDog yf-exam v 1.8.0 is vulnerable to Deserialization which can lead to remote code... Critical Unreviewed

CVE-2023-26779 was published Mar 4, 2023

Unauthenticated Java deserialization vulnerability in Serviceguard Manager Critical Unreviewed

CVE-2022-37936 was published Mar 1, 2023

SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because... Critical Unreviewed

CVE-2023-27372 was published Feb 28, 2023

In run of ChooseTypeAndAccountActivity.java, there is a possible escalation of privilege due to... High Unreviewed

CVE-2023-20944 was published Feb 28, 2023

The BuddyForms WordPress plugin, in versions prior to 2.7.8, was affected by an unauthenticated... Critical Unreviewed

CVE-2023-26326 was published Feb 23, 2023

A vulnerability was found in SeaCMS 11.6 and classified as problematic. Affected by this issue is... Unknown Unreviewed

CVE-2023-0960 was published Feb 22, 2023

The ShopLentor WordPress plugin before 2.5.4 unserializes user input from cookies in order to... Critical Unreviewed

CVE-2023-0232 was published Feb 21, 2023

JD-GUI 1.6.6 allows deserialization via UIMainWindowPreferencesProvider.singleInstance. Critical Unreviewed

CVE-2023-26234 was published Feb 21, 2023

IBM Aspera Faspex 4.4.1 could allow a remote attacker to execute arbitrary code on the system,... Critical Unreviewed

CVE-2022-47986 was published Feb 17, 2023

SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability... High Unreviewed

CVE-2022-38111 was published Feb 15, 2023

Previous 1…35…55 Next

Previous 1 2 … 33 34 35 36 37 … 54 55 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,372 advisories