Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,423 advisories

Loading
Westbrookadmin portfolioCMS v1.05 allows attackers to bypass password validation and access... High Unreviewed
CVE-2020-20402 was published Jan 31, 2023
COMFAST (Shenzhen Sihai Zhonglian Network Technology Co., Ltd) CF-WR623N Router firmware V2.3.0.1... High Unreviewed
CVE-2022-47700 was published Jan 31, 2023
A CWE-287: Improper Authentication vulnerability exists that could allow an attacker to gain... Critical Unreviewed
CVE-2022-32514 was published Jan 31, 2023
There is an improper authentication vulnerability in Pandora FMS v764. The application verifies... Low Unreviewed
CVE-2022-43978 was published Jan 28, 2023
An issue in the component global.so of Totolink A830R V4.1.2cu.5182 allows attackers to bypass... Critical Unreviewed
CVE-2022-48066 was published Jan 27, 2023
In (TBD) of (TBD), there is a possible way to bypass the lockscreen due to Biometric Auth Failure... Moderate Unreviewed
CVE-2023-20924 was published Jan 26, 2023
ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control. An... High Unreviewed
CVE-2021-43447 was published Jan 23, 2023
The Passster WordPress plugin before 3.5.5.9 does not properly check for password, as well as... High Unreviewed
CVE-2021-24881 was published Jan 23, 2023
ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control. An attacker can... Critical Unreviewed
CVE-2021-43445 was published Jan 23, 2023
ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control. Signed document... High Unreviewed
CVE-2021-43444 was published Jan 23, 2023
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5... Critical Unreviewed
CVE-2020-22657 was published Jan 20, 2023
Zoho ManageEngine ServiceDesk Plus MSP through 13003 is vulnerable to authentication bypass due... Critical Unreviewed
CVE-2023-22964 was published Jan 20, 2023
Use of password hash instead of password for authentication vulnerability in CONPROSYS HMI System... Moderate Unreviewed
CVE-2023-22334 was published Jan 20, 2023
An issue was discovered in OpenText Content Suite Platform 22.1 (16.2.19.1803). The request... High Unreviewed
CVE-2022-45922 was published Jan 18, 2023
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)... High Unreviewed
CVE-2023-21841 was published Jan 18, 2023
m-FILTER prior to Ver.5.70R01 (Ver.5 Series) and m-FILTER prior to Ver.4.87R04 (Ver.4 Series)... Moderate Unreviewed
CVE-2023-22278 was published Jan 17, 2023
TP-Link SG105PE firmware prior to 'TL-SG105PE(UN) 1.0_1.0.0 Build 20221208' contains an... Critical Unreviewed
CVE-2023-22303 was published Jan 17, 2023
The Forgotten Password functionality of Rocket TRUfusion Portal v7.9.2.1 allows remote attackers... High Unreviewed
CVE-2022-25027 was published Jan 13, 2023
EXFO - BV-10 Performance Endpoint Unit authentication bypass User can manually manipulate access... Critical Unreviewed
CVE-2022-39184 was published Jan 12, 2023
Authentication bypass in Netcomm router models NF20MESH, NF20, and NL1902 allows an... High Unreviewed
CVE-2022-4874 was published Jan 11, 2023
An authentication bypass vulnerability exists in the get_IFTTTTtoken.cgi functionality of Asus RT... High Unreviewed
CVE-2022-35401 was published Jan 10, 2023
platform_callback_stub in misc subsystem within OpenHarmony-v3.0.5 and prior versions has an... High Unreviewed
CVE-2023-0036 was published Jan 9, 2023
softbus_client_stub in communication subsystem within OpenHarmony-v3.0.5 and prior versions has... High Unreviewed
CVE-2023-0035 was published Jan 9, 2023
A vulnerability was found in SourceCodester Royale Event Management System 1.0. It has been rated... Critical Unreviewed
CVE-2022-1101 was published Jan 8, 2023
A vulnerability, which was classified as critical, was found in holdennb CollabCal. Affected is... Critical Unreviewed
CVE-2014-125060 was published Jan 7, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database