Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+

981 advisories

Loading
XWiki Platform may show email addresses in clear in REST results High
CVE-2023-35151 was published for org.xwiki.platform:xwiki-platform-rest-server (Maven) Jun 20, 2023
XWiki Platform may retrieve email addresses of all users High
CVE-2023-34467 was published for org.xwiki.platform:xwiki-platform-livetable-ui (Maven) Jun 20, 2023
floerer
An information disclosure vulnerability in the?faye endpoint in Proofpoint Threat Response /... Moderate Unreviewed
CVE-2023-2820 was published Jun 15, 2023
Windows Installer Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-32016 was published Jun 14, 2023
Windows Kernel Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-32019 was published Jun 14, 2023
DHCP Server Service Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-29355 was published Jun 14, 2023
ServiceNow has released patches and an upgrade that address an Access Control List (ACL) bypass... Moderate Unreviewed
CVE-2022-43684 was published Jun 13, 2023
Exposure of resource to wrong sphere in Zoom for Windows and Zoom for MacOS clients before 5.14... Moderate Unreviewed
CVE-2023-34114 was published Jun 13, 2023
On Unix platforms, the Go runtime does not behave differently when a binary is run with the... High Unreviewed
CVE-2023-29403 was published Jun 8, 2023
Jeecg P3 Biz Chat allows remote attackers to read arbitrary files High
CVE-2023-33510 was published for org.jeecgframework.p3:jeecg-p3-biz-chat (Maven) Jun 7, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 15.7 before 15.10... Moderate Unreviewed
CVE-2023-1825 was published Jun 7, 2023
Landscape's server-status page exposed sensitive system information. This data leak included GET... High Unreviewed
CVE-2023-32550 was published Jun 6, 2023
Information disclosure in Linux Networking Firmware due to unauthorized information leak during... Moderate Unreviewed
CVE-2022-40525 was published Jun 6, 2023
Information disclosure in Kernel due to indirect branch misprediction. Moderate Unreviewed
CVE-2022-40523 was published Jun 6, 2023
emoncms v11 and later was discovered to contain an information disclosure vulnerability which... Moderate Unreviewed
CVE-2023-33518 was published Jun 5, 2023
Under specific circumstances a WebExtension may have received a <code>jar:file:///</code> URI... Moderate Unreviewed
CVE-2023-29538 was published Jun 2, 2023
Under certain circumstances, a ServiceWorker's offline cache may have leaked to the file system... Moderate Unreviewed
CVE-2023-25750 was published Jun 2, 2023
Missing Password Field Masking vulnerability in Mitsubishi Electric Corporation EtherNet/IP... Moderate Unreviewed
CVE-2023-2062 was published Jun 2, 2023
An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console... High Unreviewed
CVE-2023-28344 was published May 31, 2023
Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Finex Media... High Unreviewed
CVE-2023-2703 was published May 23, 2023
An issue was discovered in KaiOS 3.0 and 3.1. The binary /system/kaios/api-daemon exposes a local... Moderate Unreviewed
CVE-2023-33293 was published May 22, 2023
OpenBlue Enterprise Manager Data Collector versions prior to 3.2.5.75 may expose sensitive... Moderate Unreviewed
CVE-2023-2025 was published May 18, 2023
Inclusion of Sensitive Information in Source Code in SICK FTMg AIR FLOW SENSOR with Partnumbers... Moderate Unreviewed
CVE-2023-23448 was published May 15, 2023
An issue found in Webroot SecureAnywhere Endpoint Protection CE 23.1 v.9.0.33.39 and before... Moderate Unreviewed
CVE-2023-29820 was published May 12, 2023
n8n Information Disclosure vulnerability High
CVE-2023-27564 was published for n8n (npm) May 10, 2023
MarkLee131
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database