GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,773
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,123
npm 4,307
NuGet 760
pip 4,080
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,205

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

27,567 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

org.xwiki.platform:xwiki-platform-wiki-ui-mainwiki Eval Injection vulnerability Critical

CVE-2023-29211 was published for org.xwiki.platform:xwiki-platform-wiki-ui-mainwiki (Maven) Apr 12, 2023

org.xwiki.platform:xwiki-platform-notifications-ui Eval Injection vulnerability Critical

CVE-2023-29210 was published for org.xwiki.platform:xwiki-platform-notifications-ui (Maven) Apr 12, 2023

org.xwiki.platform:xwiki-platform-legacy-notification-activitymacro Eval Injection vulnerability Critical

CVE-2023-29209 was published for org.xwiki.platform:xwiki-platform-legacy-notification-activitymacro (Maven) Apr 12, 2023

Prestashop advancedpopupcreator v1.1.21 to v1.1.24 was discovered to contain a SQL injection... Critical Unreviewed

CVE-2023-27032 was published Apr 12, 2023

TightVNC before v2.8.75 allows attackers to escalate privileges on the host operating system via... Critical Unreviewed

CVE-2023-27830 was published Apr 12, 2023

Microsoft Message Queuing Remote Code Execution Vulnerability Critical Unreviewed

CVE-2023-21554 was published Apr 11, 2023

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability Critical Unreviewed

CVE-2023-28250 was published Apr 11, 2023

Some Hikvision Hybrid SAN/Cluster Storage products have an access control vulnerability which can... Critical Unreviewed

CVE-2023-28808 was published Apr 11, 2023

A missing authentication for critical function vulnerability [CWE-306] in FortiPresence... Critical Unreviewed

CVE-2022-41331 was published Apr 11, 2023

File Upload vulnerability found in Milken DoyoCMS v.2.3 allows a remote attacker to execute... Critical Unreviewed

CVE-2020-19802 was published Apr 11, 2023

An issue found in DUALSPACE Super Secuirty v.2.3.7 allows an attacker to cause a denial of... Critical Unreviewed

CVE-2023-27192 was published Apr 11, 2023

An issue found in POWERAMP audioplayer build 925 bundle play and build 954 allows a remote... Critical Unreviewed

CVE-2023-27645 was published Apr 11, 2023

safe-eval vulnerable to Prototype Pollution via the safeEval function Critical

CVE-2023-26121 was published for safe-eval (npm) Apr 11, 2023

safe-eval vulnerable to Sandbox Bypass due to improper input sanitization Critical

CVE-2023-26122 was published for safe-eval (npm) Apr 11, 2023

Novi Survey before 8.9.43676 allows remote attackers to execute arbitrary code on the server in... Critical Unreviewed

CVE-2023-29492 was published Apr 11, 2023

Due to missing authentication and input sanitization of code the EventLogServiceCollector of SAP... Critical Unreviewed

CVE-2023-27497 was published Apr 11, 2023

A memory corruption issue was addressed with improved state management. This issue is fixed in... Critical Unreviewed

CVE-2022-46709 was published Apr 10, 2023

Certain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index. Critical Unreviewed

CVE-2023-26066 was published Apr 10, 2023

Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 3 of 4). Critical Unreviewed

CVE-2023-26069 was published Apr 10, 2023

Certain Lexmark devices through 2023-02-19 access a Resource By Using an Incompatible Type. Critical Unreviewed

CVE-2023-26063 was published Apr 10, 2023

Certain Lexmark devices through 2023-02-19 have an Integer Overflow. Critical Unreviewed

CVE-2023-26065 was published Apr 10, 2023

Certain Lexmark devices through 2023-02-19 have an Out-of-bounds Write. Critical Unreviewed

CVE-2023-26064 was published Apr 10, 2023

Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 4 of 4). Critical Unreviewed

CVE-2023-26070 was published Apr 10, 2023

Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 2 of 4). Critical Unreviewed

CVE-2023-26068 was published Apr 10, 2023

An arbitrary file upload vulnerability in the upload function of GDidees CMS 3.9.1 allows... Critical Unreviewed

CVE-2023-27178 was published Apr 10, 2023

Previous 1…396…400 Next

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

27,567 advisories