Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,423 advisories

Loading
Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of... Moderate Unreviewed
CVE-2023-39215 was published Sep 12, 2023
User authentication with username and password credentials is ineffective in OpenText (Micro... Critical Unreviewed
CVE-2023-4501 was published Sep 12, 2023
The JMX Console within the Rockwell Automation Pavilion8 is exposed to application users and... Moderate Unreviewed
CVE-2023-29463 was published Sep 12, 2023
An issue in StrangeBee TheHive v.5.0.8, v.4.1.21 and Cortex v.3.1.6 allows a remote attacker to... Critical Unreviewed
CVE-2023-39069 was published Sep 12, 2023
A vulnerability exists in the Equipment Tag Out authentication, when configured with Single Sign... High Unreviewed
CVE-2023-4816 was published Sep 11, 2023
An issue was discovered in MoFi Network MOFI4500-4GXeLTE-V2 3.5.6-xnet-5052 allows attackers to... Critical Unreviewed
CVE-2021-27715 was published Sep 8, 2023
A vulnerability in the single sign-on (SSO) implementation of Cisco BroadWorks Application... Critical Unreviewed
CVE-2023-20238 was published Sep 6, 2023
Tenda N300 Wireless N VDSL2 Modem Router allows unauthenticated access to pages that in turn... Moderate Unreviewed
CVE-2023-4498 was published Sep 6, 2023
Improper authentication vulnerability in Archer C20 firmware versions prior to 'Archer C20(JP... High Unreviewed
CVE-2023-37284 was published Sep 6, 2023
Improper authentication in LocalProvier of Gallery prior to version 14.5.01.2 allows attacker to... Moderate Unreviewed
CVE-2023-30725 was published Sep 6, 2023
Improper authentication in GallerySearchProvider of Gallery prior to version 14.5.01.2 allows... Low Unreviewed
CVE-2023-30724 was published Sep 6, 2023
Improper authentication in Phone and Messaging Storage SMR SEP-2023 Release 1 allows attacker to... Low Unreviewed
CVE-2023-30711 was published Sep 6, 2023
Improper authentication in SecSettings prior to SMR Sep-2023 Release 1 allows attacker to access... High Unreviewed
CVE-2023-30708 was published Sep 6, 2023
An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation... High Unreviewed
CVE-2023-34998 was published Sep 5, 2023
An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation... Critical Unreviewed
CVE-2023-31242 was published Sep 5, 2023
A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions... High Unreviewed
CVE-2023-39981 was published Sep 2, 2023
Sensitive information disclosure due to improper token expiration validation. The following... Moderate Unreviewed
CVE-2023-41751 was published Aug 31, 2023
Zoho ManageEngine ADManager Plus through 7186 is vulnerable to 2FA bypass. High Unreviewed
CVE-2023-35785 was published Aug 28, 2023
Walchem Intuition 9 firmware versions prior to v4.21 are vulnerable to improper authentication.... High Unreviewed
CVE-2023-32202 was published Aug 24, 2023
** UNSUPPPORTED WHEN ASSIGNED ** Improper authentication vulnerability in Rakuten WiFi Pocket all... Moderate Unreviewed
CVE-2023-40282 was published Aug 23, 2023
Improper authentication vulnerability in the CBC products allows a remote authenticated attacker... High Unreviewed
CVE-2023-38585 was published Aug 23, 2023
Because of an authentication flaw an attacker would be capable of generating a web report that... High Unreviewed
CVE-2023-25913 was published Aug 21, 2023
Inadequate validation of permissions when employing remote tools and macros within Devolutions... Critical Unreviewed
CVE-2023-4373 was published Aug 21, 2023
A vulnerability was found in Ruijie RG-EW1200G 07161417 r483. It has been rated as critical.... High Unreviewed
CVE-2023-4415 was published Aug 18, 2023
Improper authentication vulnerability in Proself Enterprise/Standard Edition Ver5.61 and earlier,... High Unreviewed
CVE-2023-39415 was published Aug 18, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database