Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

30,221 advisories

Loading
An OS Command Injection in the CLI interface on DrayTek Vigor167 version 5.2.2, allows remote... Critical Unreviewed
CVE-2023-47254 was published Dec 9, 2023
Code execution in evershop Critical
CVE-2023-46498 was published for @evershop/evershop (npm) Dec 8, 2023
In dhcp4_SetPDNAddress of dhcp4_Main.c, there is a possible out of bounds write due to a missing... Critical Unreviewed
CVE-2023-48423 was published Dec 8, 2023
DoraCMS v2.1.8 was discovered to re-use the same code for verification of valid usernames and... Critical Unreviewed
CVE-2023-49443 was published Dec 8, 2023
In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a stack-based buffer overflow in /usr... Critical Unreviewed
CVE-2023-49007 was published Dec 8, 2023
Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to... Critical Unreviewed
CVE-2023-48929 was published Dec 8, 2023
An authentication bypass in Zultys MX-SE, MX-SE II, MX-E, MX-Virtual, MX250, and MX30 with... Critical Unreviewed
CVE-2023-43742 was published Dec 8, 2023
Student Information System v1.0 is vulnerable to an unauthenticated SQL Injection vulnerability... Critical Unreviewed
CVE-2023-5008 was published Dec 8, 2023
Student Information System v1.0 is vulnerable to an Insecure File Upload vulnerability on the ... Critical Unreviewed
CVE-2023-4122 was published Dec 8, 2023
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Critical Unreviewed
CVE-2023-35618 was published Dec 7, 2023
Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the function set_device_name. Critical Unreviewed
CVE-2023-49408 was published Dec 7, 2023
Tenda W30E V16.01.0.12(4843) was discovered to contain a Command Execution vulnerability via the... Critical Unreviewed
CVE-2023-49406 was published Dec 7, 2023
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function UploadCfg. Critical Unreviewed
CVE-2023-49405 was published Dec 7, 2023
Tenda W30E V16.01.0.12(4843) contains a stack overflow vulnerability via the function... Critical Unreviewed
CVE-2023-49411 was published Dec 7, 2023
Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the... Critical Unreviewed
CVE-2023-49409 was published Dec 7, 2023
NETSCOUT nGeniusPULSE 3.8 has Weak File Permissions Vulnerability Critical Unreviewed
CVE-2023-40302 was published Dec 7, 2023
Ericsson Network Manager before 23.2 mishandles Access Control and thus unauthenticated low... Critical Unreviewed
CVE-2023-39909 was published Dec 7, 2023
NETSCOUT nGeniusPULSE 3.8 has a Hardcoded Cryptographic Key. Critical Unreviewed
CVE-2023-40300 was published Dec 7, 2023
NETSCOUT nGeniusPULSE 3.8 has a Command Injection Vulnerability. Critical Unreviewed
CVE-2023-40301 was published Dec 7, 2023
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function... Critical Unreviewed
CVE-2023-49404 was published Dec 7, 2023
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function... Critical Unreviewed
CVE-2023-50000 was published Dec 7, 2023
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function localMsg. Critical Unreviewed
CVE-2023-49402 was published Dec 7, 2023
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function... Critical Unreviewed
CVE-2023-50002 was published Dec 7, 2023
Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function... Critical Unreviewed
CVE-2023-50001 was published Dec 7, 2023
Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the ... Critical Unreviewed
CVE-2023-49431 was published Dec 7, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database