Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

838 advisories

Loading
ASUS Control Center API has a broken access control vulnerability. An unauthenticated remote... High Unreviewed
CVE-2022-26668 was published Jun 21, 2022
The Very Simple Contact Form WordPress plugin before 11.6 exposes the solution to the captcha in... High Unreviewed
CVE-2022-1801 was published Jun 21, 2022
In Mahara 21.04 before 21.04.6, 21.10 before 21.10.4, and 22.04.2, files can sometimes be... High Unreviewed
CVE-2022-33913 was published Jun 21, 2022
A vulnerability has been found in Adminer Login 1.4.4 and classified as problematic. This... High Unreviewed
CVE-2017-20066 was published Jun 21, 2022
Corruption of the system by a remote, unauthenticated user. The impact of this can include the... High Unreviewed
CVE-2022-27511 was published Jun 17, 2022
Kerberos AppContainer Security Feature Bypass Vulnerability. High Unreviewed
CVE-2022-30164 was published Jun 16, 2022
A user with user level permission can access graphics protected region due to improper access... High Unreviewed
CVE-2021-35112 was published Jun 15, 2022
Improper authorization of a replayed LTE security mode command can lead to a denial of service in... High Unreviewed
CVE-2021-30344 was published Jun 15, 2022
SAP Financial Consolidation - version 1010,?does not perform necessary authorization checks for... High Unreviewed
CVE-2022-31595 was published Jun 15, 2022
Improper access control vulnerability in Rakuten Casa version AP_F_V1_4_1 or AP_F_V2_0_0 allows a... High Unreviewed
CVE-2022-28704 was published Jun 14, 2022
Improper access control vulnerability in Rakuten Casa version AP_F_V1_4_1 or AP_F_V2_0_0 allows a... High Unreviewed
CVE-2022-26834 was published Jun 14, 2022
Power Distribution Units running on Powertek firmware (multiple brands) before 3.30.30 allows... High Unreviewed
CVE-2022-33174 was published Jun 14, 2022
A vulnerability classified as critical was found in SourceCodester Prison Management System 1.0.... High Unreviewed
CVE-2022-2019 was published Jun 10, 2022
Improper caller check in AR Emoji prior to SMR Jun-2022 Release 1 allows untrusted applications... High Unreviewed
CVE-2022-30717 was published Jun 8, 2022
Jamf Private Access before 2022-05-16 has Incorrect Access Control, in which an unauthorized user... High Unreviewed
CVE-2022-29564 was published Jun 8, 2022
When the feature is configured, improper authorization in the Interactive Web Terminal in GitLab... High Unreviewed
CVE-2022-1944 was published Jun 7, 2022
Gradle Enterprise through 2022.2.2 has Incorrect Access Control that leads to information... High Unreviewed
CVE-2022-30587 was published Jun 7, 2022
Gradle Enterprise through 2022.2.2 has Incorrect Access Control that leads to code execution. High Unreviewed
CVE-2022-30586 was published Jun 7, 2022
An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that... High Unreviewed
CVE-2022-1949 was published Jun 3, 2022
The Change wp-admin login WordPress plugin before 1.1.0 does not properly check for authorisation... High Unreviewed
CVE-2022-1589 was published May 31, 2022
Dell OpenManage Enterprise Versions 3.8.3 and prior contain an improper authorization... High Unreviewed
CVE-2022-26857 was published May 27, 2022
Archer Platform 6.3 before 6.11 (6.11.0.0) contains an Improper Access Control Vulnerability... High Unreviewed
CVE-2022-30584 was published May 27, 2022
Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby... High Unreviewed
CVE-2020-26559 was published May 24, 2022
Backup file without encryption vulnerability is found in Hitachi ABB Power Grids System Data... High Unreviewed
CVE-2021-35526 was published May 24, 2022
The Gutenberg Template Library & Redux Framework plugin <= 4.2.11 for WordPress used an incorrect... High Unreviewed
CVE-2021-38312 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database