GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,936
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,154
NuGet 736
pip 3,953
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 270,140

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,425 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Softing Secure Integration Server, edgeConnector, and edgeAggregator software ships with the... Critical Unreviewed

CVE-2022-2336 was published Aug 18, 2022

An access control issue in Ecowitt GW1100 Series Weather Stations <=GW1100B_v2.1.5 allows... Critical Unreviewed

CVE-2022-35122 was published Aug 18, 2022

DoraCMS v2.18 and earlier allows attackers to bypass login authentication via a crafted HTTP... Critical Unreviewed

CVE-2022-35147 was published Aug 18, 2022

Sequi PortBloque S has a improper authentication issues which may allow an attacker to bypass the... Critical Unreviewed

CVE-2022-2662 was published Aug 17, 2022

D-Link GO-RT-AC750 GORTAC750_revA_v101b03 & GO-RT-AC750_revB_FWv200b02 is vulnerable to... High Unreviewed

CVE-2022-36526 was published Aug 16, 2022

An issue was discovered in Aviatrix Gateway before 6.6.5712 and 6.7.x before 6.7.1376. Because... High Unreviewed

CVE-2022-38368 was published Aug 16, 2022

Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP... Critical Unreviewed

CVE-2022-37042 was published Aug 13, 2022

Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this... Moderate Unreviewed

CVE-2022-2503 was published Aug 13, 2022

An issue was discovered in the YugabyteDB 2.6.1 when using LDAP-based authentication in YCQL with... Critical Unreviewed

CVE-2022-37397 was published Aug 13, 2022

A vulnerability was found in SourceCodester Company Website CMS 1.0. It has been declared as... Critical Unreviewed

CVE-2022-2765 was published Aug 12, 2022

A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions),... High Unreviewed

CVE-2021-46304 was published Aug 11, 2022

An authentication-bypass issue in the component http://MYDEVICEIP/cgi-bin-sdb/ExportSettings.sh... Critical Unreviewed

CVE-2022-32429 was published Aug 11, 2022

Prior Dell BIOS versions contain an Improper Authentication vulnerability. An unauthenticated... Moderate Unreviewed

CVE-2022-29083 was published Aug 10, 2022

A vulnerability classified as critical has been found in Private Cloud Management Platform.... Critical Unreviewed

CVE-2022-2664 was published Aug 6, 2022

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication... Critical Unreviewed

CVE-2022-31656 was published Aug 6, 2022

Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical... Low Unreviewed

CVE-2022-33720 was published Aug 6, 2022

Broken Authentication vulnerability in JumpDEMAND Inc. ActiveDEMAND plugin <= 0.2.27 at WordPress... Moderate Unreviewed

CVE-2022-36296 was published Aug 6, 2022

Using off-the-shelf commodity hardware, the Unitree Go 1 robotics platform version H0.1.7 and H0... Moderate Unreviewed

CVE-2022-2675 was published Aug 6, 2022

Due to a bug in the handling of the communication between the client and server, it was possible... Moderate Unreviewed

CVE-2022-35629 was published Jul 30, 2022

The authfile directive in the booth config file is ignored, preventing use of authentication in... Moderate Unreviewed

CVE-2022-2553 was published Jul 29, 2022

Saia Burgess Controls (SBC) PCD through 2022-05-06 allows Authentication bypass. According to... High Unreviewed

CVE-2022-30319 was published Jul 29, 2022

In Zoho ManageEngine SupportCenter Plus before 11023, V3 API requests are vulnerable to... Critical Unreviewed

CVE-2022-36412 was published Jul 27, 2022

An authentication bypass vulnerability exists in FileWave before 14.6.3 and 14.7.x before 14.7.2.... Critical Unreviewed

CVE-2022-34907 was published Jul 26, 2022

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers... Moderate Unreviewed

CVE-2022-34575 was published Jul 26, 2022

Authentication Bypass vulnerability in CodexShaper's WP OAuth2 Server plugin <= 1.0.1 at WordPress. Critical Unreviewed

CVE-2022-34839 was published Jul 23, 2022

Previous 1…39…137 Next

Previous 1 2 … 37 38 39 40 41 … 136 137 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,425 advisories