Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,315
Maven
5,000+
npm
3,949
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+

41 advisories

Loading
Pivotal Application Manager, versions 666.0.x prior to 666.0.36, versions 667.0.x prior to 667.0... Moderate Unreviewed
CVE-2019-11275 was published May 24, 2022
The SAP Application Interface Framework (Message Dashboard) - versions AIF 703, AIFX 702, S4CORE... Moderate Unreviewed
CVE-2023-29109 was published Apr 11, 2023
Ericsson Network Manager (ENM), versions prior to 22.1, contains a vulnerability in the... Moderate Unreviewed
CVE-2022-46408 was published Jun 29, 2023
A CSV injection vulnerability was found in the Avaya Call Management System (CMS) Supervisor web... Moderate Unreviewed
CVE-2023-3527 was published Jul 19, 2023
Dell SmartFabric Storage Software v1.4 (and earlier) contains possible vulnerabilities for HTML... Moderate Unreviewed
CVE-2023-43071 was published Oct 5, 2023
IBM WebSphere Automation 1.7.0 could allow an attacker with privileged access to the network to... Moderate Unreviewed
CVE-2024-28764 was published May 1, 2024
The TablePress plugin 1.9.2 for WordPress allows tablepress[data] CSV injection by Editor users. Moderate Unreviewed
CVE-2019-20180 was published May 24, 2022
The WS Form LITE plugin for WordPress is vulnerable to CSV Injection in versions up to, and... Moderate Unreviewed
CVE-2023-5424 was published Jun 7, 2024
An improper neutralization of formula elements in a CSV File vulnerability [CWE-1236] in... Moderate Unreviewed
CVE-2024-27785 was published Jul 9, 2024
CSV Injection vulnerability in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (... Moderate Unreviewed
CVE-2023-31296 was published Dec 29, 2023
Improper Neutralization of Formula Elements in a CSV File in html-2-csv Moderate
CVE-2021-23654 was published for html-to-csv (pip) Nov 30, 2021
KateCatlin
There is a CSV injection vulnerability in some HikCentral Master Lite versions. If exploited, an... Moderate Unreviewed
CVE-2024-47485 was published Oct 18, 2024
KWHotel 0.47 is vulnerable to CSV Formula Injection in the add guest function. Moderate Unreviewed
CVE-2023-46400 was published Jan 24, 2025
The Relevanssi – A Better Search plugin for WordPress is vulnerable to CSV Injection in all... Moderate Unreviewed
CVE-2024-3214 was published Apr 9, 2024
PHPJabbers Event Booking Calendar v4.0 is vulnerable to CSV Injection vulnerability which allows... Moderate Unreviewed
CVE-2023-51298 was published Feb 19, 2025
phpLDAPadmin since at least version 1.2.0 through the latest version 1.2.6.7 allows users to... Moderate Unreviewed
CVE-2024-9102 was published Dec 19, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database