GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
104,505 advisories
Filter by severity
A heap-based buffer overflow vulnerability has been reported to affect several QNAP operating...
Moderate
Unreviewed
CVE-2023-41273
was published
Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-41281
was published
Feb 2, 2024
An improper authentication vulnerability has been reported to affect several QNAP operating...
Moderate
Unreviewed
CVE-2023-39303
was published
Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-41282
was published
Feb 2, 2024
A path traversal vulnerability has been reported to affect several QNAP operating system versions...
Moderate
Unreviewed
CVE-2023-45027
was published
Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-41283
was published
Feb 2, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several...
Moderate
Unreviewed
CVE-2023-41275
was published
Feb 2, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several...
Moderate
Unreviewed
CVE-2023-41276
was published
Feb 2, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several...
Moderate
Unreviewed
CVE-2023-41278
was published
Feb 2, 2024
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating...
Moderate
Unreviewed
CVE-2023-41274
was published
Feb 2, 2024
A path traversal vulnerability has been reported to affect several QNAP operating system versions...
Moderate
Unreviewed
CVE-2023-45026
was published
Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-39302
was published
Feb 2, 2024
An incorrect authorization vulnerability has been reported to affect several QNAP operating...
Moderate
Unreviewed
CVE-2023-32967
was published
Feb 2, 2024
Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Observable Timing Discrepancy...
Moderate
Unreviewed
CVE-2021-21575
was published
Feb 2, 2024
IBM Storage Protect Plus Server 10.1.0 through 10.1.15.2 Admin Console could allow a remote...
Moderate
Unreviewed
CVE-2023-47148
was published
Feb 2, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2023-6672
was published
Feb 2, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2023-6673
was published
Feb 2, 2024
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 through 7.3.0.10 is vulnerable to...
Moderate
Unreviewed
CVE-2023-47144
was published
Feb 2, 2024
The Popup More Popups, Lightboxes, and more popup modules plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-0844
was published
Feb 2, 2024
Cross-site scripting (XSS) vulnerability in XunRuiCMS versions v4.6.2 and before, allows remote...
Moderate
Unreviewed
CVE-2024-24388
was published
Feb 2, 2024
The Calculated Fields Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Moderate
Unreviewed
CVE-2024-0963
was published
Feb 2, 2024
A stored cross-site scripting (XSS) vulnerability in the NOC component of Nagios XI version up to...
Moderate
Unreviewed
CVE-2023-51072
was published
Feb 2, 2024
An issue in Blurams Lumi Security Camera (A31C) v.2.3.38.12558 allows a physically proximate...
Moderate
Unreviewed
CVE-2023-51820
was published
Feb 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through improper input.
Moderate
Unreviewed
CVE-2024-21863
was published
Feb 2, 2024
: Relative Path Traversal vulnerability in B&R Industrial Automation Automation Studio allows...
Moderate
Unreviewed
CVE-2021-22281
was published
Feb 2, 2024
ProTip!
Advisories are also available from the
GraphQL API