Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
41
GitHub Actions
41
Go
3,051
Maven
5,000+
npm
4,791
NuGet
825
pip
4,389
Pub
12
RubyGems
988
Rust
1,145
Swift
50
Unreviewed advisories
All unreviewed
5,000+

747 advisories

Loading
The mappress-google-maps-for-wordpress plugin before 2.53.9 for WordPress does not correctly... Moderate Unreviewed
CVE-2020-12077 was published May 24, 2022
The mappress-google-maps-for-wordpress plugin before 2.54.6 for WordPress does not correctly... Moderate Unreviewed
CVE-2020-12675 was published May 24, 2022
SAP Business Planning and Consolidation - versions 200, 300, allows an attacker with business... Moderate Unreviewed
CVE-2023-23851 was published Feb 14, 2023
In Dataiku DSS 11.2.1, an attacker can download other Dataiku files that were uploaded to the... Moderate Unreviewed
CVE-2023-24045 was published Mar 1, 2023
Mattermost subject to Denial of Service via upload of special GIF Moderate
CVE-2022-3257 was published for github.com/mattermost/mattermost-server/v6 (Go) Sep 25, 2022
hod-alpert Credited to hod-alpert
WisdomGarden Tronclass has improper access control when uploading file. An authenticated remote... Moderate Unreviewed
CVE-2023-24834 was published Mar 27, 2023
An arbitrary file upload vulnerability in Halo up to v1.6.1 allows attackers to execute arbitrary... Moderate Unreviewed
CVE-2023-27164 was published Mar 10, 2023
An authenticated malicious user could successfully upload a malicious image could lead to a... Moderate Unreviewed
CVE-2023-28652 was published Mar 27, 2023
Multiple vulnerabilities in the web interface of Cisco Webex Meetings could allow an... Moderate Unreviewed
CVE-2023-20134 was published Apr 5, 2023
pgAdmin 4 Path Traversal vulnerability Moderate
CVE-2022-0959 was published for pgadmin4 (pip) Mar 17, 2022
baserCMS arbitrary file upload vulnerability Moderate
CVE-2018-0571 was published for baserproject/basercms (Composer) May 14, 2022
DNN File Upload Vulnerability Moderate
CVE-2020-5188 was published for DotNetNuke.Core (NuGet) May 24, 2022
A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified... Moderate Unreviewed
CVE-2023-2246 was published Apr 23, 2023
Affected versions of Atlassian Confluence Server allow remote attackers who have read permissions... Moderate Unreviewed
CVE-2023-22504 was published May 25, 2023
A vulnerability was found in code-projects Agro-School Management System 1.0 and classified as... Moderate Unreviewed
CVE-2023-3061 was published Jun 2, 2023
A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected... Moderate Unreviewed
CVE-2023-5795 was published Oct 26, 2023
A vulnerability has been found in flusity CMS and classified as critical. Affected by this... Moderate Unreviewed
CVE-2023-5812 was published Oct 27, 2023
A vulnerability was found in CodeAstro POS System 1.0. It has been rated as critical. Affected by... Moderate Unreviewed
CVE-2023-5796 was published Oct 26, 2023
Cockpit CMS arbitrary file upload vulnerability Moderate
CVE-2023-41564 was published for cockpit-hq/cockpit (Composer) Sep 9, 2023
A vulnerability was found in code-projects Admission Management System 1.0. It has been rated as... Moderate Unreviewed
CVE-2023-5829 was published Oct 27, 2023
Phishing attack vulnerability by uploading malicious HTML file Moderate
CVE-2023-32689 was published for parse-server (npm) May 31, 2023
dblythy Credited to dblythy and mtrezza mtrezza mtrezza
A vulnerability was found in SmartWeb Infotech Job Board 1.0 and classified as critical. Affected... Moderate Unreviewed
CVE-2023-3504 was published Jul 4, 2023
A vulnerability has been found in SourceCodester Shopping Website 1.0 and classified as critical.... Moderate Unreviewed
CVE-2023-3503 was published Jul 4, 2023
A vulnerability, which was classified as critical, has been found in Bettershop LaikeTui.... Moderate Unreviewed
CVE-2023-4559 was published Aug 28, 2023
phpMyFAQ allows unrestricted file types in image field Moderate
CVE-2023-5227 was published for thorsten/phpmyfaq (Composer) Sep 30, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database