GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,436
Erlang
29
GitHub Actions
16
Go
1,661
Maven
4,922
npm
3,450
NuGet
594
pip
2,840
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+
21,389 advisories
Filter by severity
Some CORS middleware allow untrusted origins
Critical
GHSA-v84h-653v-4pq9
was published
for
github.com/jub0bs/fcors
(Go)
May 3, 2024
Some CORS middleware allow untrusted origins
Critical
GHSA-vhxv-fg4m-p2w8
was published
for
github.com/jub0bs/cors
(Go)
May 3, 2024
SQL injection vulnerability in Gescen on the centrosdigitales.net platform. This vulnerability...
Critical
Unreviewed
CVE-2024-4466
was published
May 3, 2024
Voltronic Power ViewPower MacMonitorConsole Exposed Dangerous Method Remote Code Execution...
Critical
Unreviewed
CVE-2023-51581
was published
May 3, 2024
Voltronic Power ViewPower MonitorConsole Exposed Dangerous Method Remote Code Execution...
Critical
Unreviewed
CVE-2023-51575
was published
May 3, 2024
Voltronic Power ViewPower Pro selectEventConfig SQL Injection Remote Code Execution Vulnerability...
Critical
Unreviewed
CVE-2023-51586
was published
May 3, 2024
Voltronic Power ViewPower Pro Expression Language Injection Remote Code Execution Vulnerability....
Critical
Unreviewed
CVE-2023-51593
was published
May 3, 2024
Voltronic Power ViewPower Pro selectDeviceListBy SQL Injection Remote Code Execution...
Critical
Unreviewed
CVE-2023-51595
was published
May 3, 2024
Voltronic Power ViewPower Pro UpLoadAction Unrestricted File Upload Remote Code Execution...
Critical
Unreviewed
CVE-2023-51590
was published
May 3, 2024
Voltronic Power ViewPower LinuxMonitorConsole Exposed Dangerous Method Remote Code Execution...
Critical
Unreviewed
CVE-2023-51582
was published
May 3, 2024
Voltronic Power ViewPower updateManagerPassword Exposed Dangerous Method Authentication Bypass...
Critical
Unreviewed
CVE-2023-51574
was published
May 3, 2024
Voltronic Power ViewPower UpsScheduler Exposed Dangerous Method Remote Code Execution...
Critical
Unreviewed
CVE-2023-51583
was published
May 3, 2024
Voltronic Power ViewPower Deserialization of Untrusted Data Remote Code Execution Vulnerability....
Critical
Unreviewed
CVE-2023-51576
was published
May 3, 2024
D-Link D-View InstallApplication Use of Hard-coded Credentials Authentication Bypass...
Critical
Unreviewed
CVE-2023-44411
was published
May 3, 2024
Control Web Panel Missing Authentication Remote Code Execution Vulnerability. This vulnerability...
Critical
Unreviewed
CVE-2023-42121
was published
May 3, 2024
D-Link D-View coreservice_action_script Exposed Dangerous Function Remote Code Execution...
Critical
Unreviewed
CVE-2023-44414
was published
May 3, 2024
Exim AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows...
Critical
Unreviewed
CVE-2023-42115
was published
May 3, 2024
LG Simple Editor readVideoInfo Command Injection Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2023-40504
was published
May 3, 2024
LG Simple Editor createThumbnailByMovie Command Injection Remote Code Execution Vulnerability....
Critical
Unreviewed
CVE-2023-40505
was published
May 3, 2024
LG Simple Editor copySessionFolder Directory Traversal Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2023-40493
was published
May 3, 2024
LG Simple Editor copyContent Exposed Dangerous Function Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2023-40501
was published
May 3, 2024
LG Simple Editor cp Command Directory Traversal Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2023-40498
was published
May 3, 2024
LG Simple Editor copyContent Exposed Dangerous Function Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2023-40500
was published
May 3, 2024
LG Simple Editor saveXml Directory Traversal Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2023-40497
was published
May 3, 2024
Inductive Automation Ignition JavaSerializationCodec Deserialization of Untrusted Data Remote...
Critical
Unreviewed
CVE-2023-39476
was published
May 3, 2024
ProTip!
Advisories are also available from the
GraphQL API