GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
27,353 advisories
Filter by severity
In TOTOLINK X6000R V9.4.0cu.852_B20230719, the shttpd file, sub_4119A0 function obtains fields...
Critical
Unreviewed
CVE-2023-48807
was published
Nov 30, 2023
In TOTOLINK X6000R V9.4.0cu.852_B20230719, the shttpd file, sub_4119A0 function obtains fields...
Critical
Unreviewed
CVE-2023-48806
was published
Nov 30, 2023
In TOTOLINK X6000R V9.4.0cu.852_B20230719, the shttpd file, sub_4119A0 function obtains fields...
Critical
Unreviewed
CVE-2023-48804
was published
Nov 30, 2023
In TOTOLINK X6000R V9.4.0cu.852_B20230719, the shttpd file, sub_4119A0 function obtains fields...
Critical
Unreviewed
CVE-2023-48805
was published
Nov 30, 2023
In TOTOLINK X6000R V9.4.0cu.852_B20230719, the shttpd file, sub_4119A0 function obtains fields...
Critical
Unreviewed
CVE-2023-48811
was published
Nov 30, 2023
In TOTOLINK X6000R V9.4.0cu.852_B20230719, the shttpd file, sub_4119A0 function obtains fields...
Critical
Unreviewed
CVE-2023-48808
was published
Nov 30, 2023
In TOTOLINK X6000R V9.4.0cu.852_B20230719, the shttpd file, sub_4119A0 function obtains fields...
Critical
Unreviewed
CVE-2023-48810
was published
Nov 30, 2023
In TOTOLINK X6000R V9.4.0cu.852_B20230719, the shttpd file, sub_4119A0 function obtains fields...
Critical
Unreviewed
CVE-2023-48802
was published
Nov 30, 2023
In TOTOLINK X6000R V9.4.0cu.852_B20230719, the shttpd file, sub_4119A0 function obtains fields...
Critical
Unreviewed
CVE-2023-48803
was published
Nov 30, 2023
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and...
Critical
Unreviewed
CVE-2023-6417
was published
Nov 30, 2023
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and...
Critical
Unreviewed
CVE-2023-6414
was published
Nov 30, 2023
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and...
Critical
Unreviewed
CVE-2023-6411
was published
Nov 30, 2023
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and...
Critical
Unreviewed
CVE-2023-6415
was published
Nov 30, 2023
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and...
Critical
Unreviewed
CVE-2023-6413
was published
Nov 30, 2023
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and...
Critical
Unreviewed
CVE-2023-6410
was published
Nov 30, 2023
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and...
Critical
Unreviewed
CVE-2023-6418
was published
Nov 30, 2023
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and...
Critical
Unreviewed
CVE-2023-6412
was published
Nov 30, 2023
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and...
Critical
Unreviewed
CVE-2023-6416
was published
Nov 30, 2023
An authenticated privileged attacker could upload a specially crafted zip to the EspoCRM server...
Critical
Unreviewed
CVE-2023-5965
was published
Nov 30, 2023
An authenticated privileged attacker could upload a specially crafted zip to the EspoCRM server...
Critical
Unreviewed
CVE-2023-5966
was published
Nov 30, 2023
Remote Code Execution (RCE) vulnerability in o2oa version 8.1.2 and before, allows attackers to...
Critical
Unreviewed
CVE-2023-47418
was published
Nov 30, 2023
Insecure Permissions vulnerability in GL.iNet AX1800 version 4.0.0 before 4.5.0 allows a remote...
Critical
Unreviewed
CVE-2023-47463
was published
Nov 30, 2023
A command injection vulnerability in the web server of the Zyxel NAS326 firmware version V5.21...
Critical
Unreviewed
CVE-2023-4473
was published
Nov 30, 2023
A command injection vulnerability in the “show_zysync_server_contents” function of the Zyxel...
Critical
Unreviewed
CVE-2023-35138
was published
Nov 30, 2023
The improper neutralization of special elements in the WSGI server of the Zyxel NAS326 firmware...
Critical
Unreviewed
CVE-2023-4474
was published
Nov 30, 2023
ProTip!
Advisories are also available from the
GraphQL API