GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,820

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,423 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue in WooCommerce Payments plugin for WordPress (versions 5.6.1 and lower) allows an... Critical Unreviewed

CVE-2023-28121 was published Apr 12, 2023

Two factor authentication bypass on login in Devolutions Remote Desktop Manager 2022.3.35 and... Moderate Unreviewed

CVE-2023-1980 was published Apr 11, 2023

An unauthorized access issue found in XiaoBingby TeaCMS 2.3.3 allows attackers to escalate... High Unreviewed

CVE-2023-27091 was published Apr 4, 2023

An issue was discovered in LemonLDAP::NG before 2.16.1. Weak session ID generation in the... Critical Unreviewed

CVE-2023-28862 was published Mar 31, 2023

Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due... High Unreviewed

CVE-2023-28727 was published Mar 31, 2023

An authentication bypass vulnerability exists in libcurl v8.0.0 where it reuses a previously... Moderate Unreviewed

CVE-2023-27538 was published Mar 30, 2023

An authentication bypass vulnerability exists in libcurl <8.0.0 in the FTP connection reuse... High Unreviewed

CVE-2023-27535 was published Mar 30, 2023

An authentication bypass vulnerability exists libcurl <8.0.0 in the connection reuse feature... Critical Unreviewed

CVE-2023-27536 was published Mar 30, 2023

This vulnerability allows network-adjacent attackers to bypass authentication on affected... High Unreviewed

CVE-2022-43620 was published Mar 29, 2023

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5... Critical Unreviewed

CVE-2023-28503 was published Mar 29, 2023

Osprey Pump Controller version 1.01 could allow an unauthenticated user to create an account and... Critical Unreviewed

CVE-2023-28398 was published Mar 28, 2023

Use of Default Password vulnerability in ABB RCCMD on Windows, Linux, MacOS allows Try Common or... Critical Unreviewed

CVE-2022-4126 was published Mar 27, 2023

In serializePasspointConfiguration of PasspointXmlUtils.java, there is a possible logic error in... High Unreviewed

CVE-2023-21027 was published Mar 24, 2023

An information disclosure vulnerability exists in the User authentication functionality of... High Unreviewed

CVE-2022-45124 was published Mar 20, 2023

A vulnerability, which was classified as critical, was found in SourceCodester Medicine Tracker... Critical Unreviewed

CVE-2023-1464 was published Mar 17, 2023

A vulnerability was found in SourceCodester Online Pizza Ordering System 1.0. It has been... Critical Unreviewed

CVE-2023-1460 was published Mar 17, 2023

Improper authentication in SecSettings prior to SMR Mar-2023 Release 1 allows attacker to reset... Moderate Unreviewed

CVE-2023-21460 was published Mar 16, 2023

Array Networks Array AG Series and vxAG (9.4.0.481 and earlier) allow remote code execution. An... Critical Unreviewed

CVE-2023-28461 was published Mar 16, 2023

IBM Robotic Process Automation 21.0.0 - 21.0.7 and 23.0.0 is vulnerable to client-side validation... Moderate Unreviewed

CVE-2022-46773 was published Mar 15, 2023

IBM Manage Application 8.8.0 and 8.9.0 in the IBM Maximo Application Suite is vulnerable to... Moderate Unreviewed

CVE-2022-46774 was published Mar 15, 2023

Netgear RAX30 (AX2400), prior to version 1.0.6.74, was affected by an authentication bypass... Critical Unreviewed

CVE-2023-1327 was published Mar 15, 2023

A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All Versions >= 1.16.4 ... Critical Unreviewed

CVE-2023-25957 was published Mar 14, 2023

Due to missing authentication check, SAP NetWeaver AS for Java - version 7.50, allows an... High Unreviewed

CVE-2023-23857 was published Mar 14, 2023

Akuvox E11 cloud login is performed through an unencrypted HTTP connection. An attacker could... High Unreviewed

CVE-2023-0346 was published Mar 13, 2023

An improper authentication vulnerability exists in Avalanche version 6.3.x and below allows... High Unreviewed

CVE-2022-44574 was published Mar 11, 2023

Previous 1…30…137 Next

Previous 1 2 … 28 29 30 31 32 … 136 137 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,423 advisories