Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

104,505 advisories

Loading
A heap-based buffer overflow vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed
CVE-2023-41273 was published Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-41281 was published Feb 2, 2024
An improper authentication vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed
CVE-2023-39303 was published Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-41282 was published Feb 2, 2024
A path traversal vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed
CVE-2023-45027 was published Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-41283 was published Feb 2, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several... Moderate Unreviewed
CVE-2023-41275 was published Feb 2, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several... Moderate Unreviewed
CVE-2023-41276 was published Feb 2, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several... Moderate Unreviewed
CVE-2023-41278 was published Feb 2, 2024
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed
CVE-2023-41274 was published Feb 2, 2024
A path traversal vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed
CVE-2023-45026 was published Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-39302 was published Feb 2, 2024
An incorrect authorization vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed
CVE-2023-32967 was published Feb 2, 2024
Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Observable Timing Discrepancy... Moderate Unreviewed
CVE-2021-21575 was published Feb 2, 2024
IBM Storage Protect Plus Server 10.1.0 through 10.1.15.2 Admin Console could allow a remote... Moderate Unreviewed
CVE-2023-47148 was published Feb 2, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2023-6672 was published Feb 2, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2023-6673 was published Feb 2, 2024
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 is vulnerable to... Moderate Unreviewed
CVE-2023-47144 was published Feb 2, 2024
The Popup More Popups, Lightboxes, and more popup modules plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-0844 was published Feb 2, 2024
Cross-site scripting (XSS) vulnerability in XunRuiCMS versions v4.6.2 and before, allows remote... Moderate Unreviewed
CVE-2024-24388 was published Feb 2, 2024
The Calculated Fields Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-0963 was published Feb 2, 2024
A stored cross-site scripting (XSS) vulnerability in the NOC component of Nagios XI version up to... Moderate Unreviewed
CVE-2023-51072 was published Feb 2, 2024
An issue in Blurams Lumi Security Camera (A31C) v.2.3.38.12558 allows a physically proximate... Moderate Unreviewed
CVE-2023-51820 was published Feb 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through improper input. Moderate Unreviewed
CVE-2024-21863 was published Feb 2, 2024
: Relative Path Traversal vulnerability in B&R Industrial Automation Automation Studio allows... Moderate Unreviewed
CVE-2021-22281 was published Feb 2, 2024
ProTip! Advisories are also available from the GraphQL API