Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,744
Maven
5,000+
npm
4,341
NuGet
765
pip
4,113
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

189 advisories

Loading
blurhash panics on parsing crafted inputs High
CVE-2023-42447 was published for blurhash (Rust) Sep 21, 2023
rubdos
Credited to rubdos
A vulnerability was found in SourceCodester Card Holder Management System 1.0 and classified as... Moderate Unreviewed
CVE-2023-4439 was published Aug 21, 2023
Denial-of-service (DoS) vulnerability due to improper validation of specified type of input issue... High Unreviewed
CVE-2023-38744 was published Aug 3, 2023
jcvi vulnerable to Configuration Injection due to unsanitized user input High
CVE-2023-35932 was published for jcvi (pip) Jun 23, 2023
Sim4n6
Credited to Sim4n6
The HTTP server in Mongoose before 7.10 accepts requests containing negative Content-Length headers. High Unreviewed
CVE-2023-34188 was published Jun 23, 2023
A denial of service attack might be launched against the server if an unusually lengthy password ... High Unreviewed
CVE-2023-30082 was published Jun 14, 2023
Due to URL previews in the network panel of developer tools improperly storing URLs, query... High Unreviewed
CVE-2023-25731 was published Jun 2, 2023
An issue was found in Action Launcher v50.5 allows an attacker to escalate privilege via... High Unreviewed
CVE-2022-47029 was published May 30, 2023
In several functions of PhoneAccountRegistrar.java, there is a possible way to prevent an access... Moderate Unreviewed
CVE-2023-21111 was published May 16, 2023
In m4u, there is a possible out of bounds write due to improper input validation. This could lead... Moderate Unreviewed
CVE-2023-20722 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20708 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20709 was published May 16, 2023
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20707 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20710 was published May 16, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20705 was published May 16, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20704 was published May 16, 2023
Multiple validation issues were addressed with improved input sanitization. This issue is fixed... Moderate Unreviewed
CVE-2023-27961 was published May 8, 2023
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS... Moderate Unreviewed
CVE-2023-27941 was published May 8, 2023
CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template... High Unreviewed
CVE-2023-30269 was published Apr 26, 2023
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer... Moderate Unreviewed
CVE-2023-0194 was published Apr 1, 2023
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer driver... Low Unreviewed
CVE-2023-0195 was published Apr 1, 2023
A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the... High Unreviewed
CVE-2022-4904 was published Mar 7, 2023
A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7... Moderate Unreviewed
CVE-2022-3411 was published Feb 14, 2023
IPFS go-bitfield vulnerable to DoS via malformed size arguments Moderate
CVE-2023-23626 was published for github.com/ipfs/go-bitfield (Go) Feb 10, 2023
Jorropo
Credited to Jorropo
The geofencing kernel code has a vulnerability of not verifying the length of the input data.... High Unreviewed
CVE-2022-48297 was published Feb 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database