Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,198
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,702
NuGet
660
pip
3,328
Pub
11
RubyGems
883
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

563 advisories

Loading
An information disclosure vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed
CVE-2022-46257 was published Mar 7, 2023
Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-23394 was published Mar 14, 2023
Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-23409 was published Mar 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-24870 was published Mar 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-24863 was published Mar 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-24866 was published Mar 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2023-24906 was published Mar 14, 2023
Mattermost fails to check the "Show Full Name" setting when rendering the result for the /plugins... Moderate Unreviewed
CVE-2023-1562 was published Mar 22, 2023
Moodle may allow teachers to access the names of users they could not otherwise access Moderate
CVE-2023-28336 was published for moodle/moodle (Composer) Mar 23, 2023
Moodle may display roles to users who don't have access to them Moderate
CVE-2023-1402 was published for moodle/moodle (Composer) Mar 23, 2023
Mattermost vulnerable to information disclosure Moderate
CVE-2023-1775 was published for github.com/mattermost/mattermost-server (Go) Mar 31, 2023
Mattermost vulnerable to information disclosure Moderate
CVE-2023-1777 was published for github.com/mattermost/mattermost-server (Go) Mar 31, 2023
KYOCERA Mobile Print' v3.2.0.230119 and earlier, 'UTAX/TA MobilePrint' v3.2.0.230119 and earlier,... Moderate Unreviewed
CVE-2023-25954 was published Apr 13, 2023
An issue was discovered in the VisualEditor extension in MediaWiki before 1.31.13, and 1.32.x... Moderate Unreviewed
CVE-2021-30153 was published Apr 15, 2023
Sensitive data exposure in Webconf in Tribe29 Checkmk Appliance before 1.6.4 allows local... Moderate Unreviewed
CVE-2023-22307 was published Apr 18, 2023
An issue has been discovered in GitLab affecting all versions starting from 10.0 before 12.9.8,... Moderate Unreviewed
CVE-2023-2069 was published May 3, 2023
An issue has been discovered in GitLab affecting all versions starting from 13.11 before 15.8.5,... Moderate Unreviewed
CVE-2023-0485 was published May 3, 2023
Exposure of resource to wrong sphere in BIOS firmware for some Intel(R) Processors may allow a... Moderate Unreviewed
CVE-2022-38087 was published May 10, 2023
An issue found in Webroot SecureAnywhere Endpoint Protection CE 23.1 v.9.0.33.39 and before... Moderate Unreviewed
CVE-2023-29820 was published May 12, 2023
Inclusion of Sensitive Information in Source Code in SICK FTMg AIR FLOW SENSOR with Partnumbers... Moderate Unreviewed
CVE-2023-23448 was published May 15, 2023
OpenBlue Enterprise Manager Data Collector versions prior to 3.2.5.75 may expose sensitive... Moderate Unreviewed
CVE-2023-2025 was published May 18, 2023
An issue was discovered in KaiOS 3.0 and 3.1. The binary /system/kaios/api-daemon exposes a local... Moderate Unreviewed
CVE-2023-33293 was published May 22, 2023
Missing Password Field Masking vulnerability in Mitsubishi Electric Corporation EtherNet/IP... Moderate Unreviewed
CVE-2023-2062 was published Jun 2, 2023
Under specific circumstances a WebExtension may have received a <code>jar:file:///</code> URI... Moderate Unreviewed
CVE-2023-29538 was published Jun 2, 2023
Under certain circumstances, a ServiceWorker's offline cache may have leaked to the file system... Moderate Unreviewed
CVE-2023-25750 was published Jun 2, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database