Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,005 advisories

Loading
A user with user level permission can access graphics protected region due to improper access... High Unreviewed
CVE-2021-35112 was published Jun 15, 2022
Gradle Enterprise through 2022.2.2 has Incorrect Access Control that leads to information... High Unreviewed
CVE-2022-30587 was published Jun 7, 2022
Improper access control in the installer Intel(R)Administrative Tools for Intel(R) Network... High Unreviewed
CVE-2021-33058 was published May 24, 2022
Improper access control in Jfinal CMS 5.1.0 allows attackers to access sensitive information via ... High Unreviewed
CVE-2021-40639 was published May 24, 2022
Microsoft Excel Security Feature Bypass Vulnerability High Unreviewed
CVE-2021-42292 was published May 24, 2022
Jamf Private Access before 2022-05-16 has Incorrect Access Control, in which an unauthorized user... High Unreviewed
CVE-2022-29564 was published Jun 8, 2022
Improper access control vulnerability in Rakuten Casa version AP_F_V1_4_1 or AP_F_V2_0_0 allows a... High Unreviewed
CVE-2022-26834 was published Jun 14, 2022
Improper authorization of a replayed LTE security mode command can lead to a denial of service in... High Unreviewed
CVE-2021-30344 was published Jun 15, 2022
The OptinMonster WordPress plugin is vulnerable to sensitive information disclosure and... High Unreviewed
CVE-2021-39341 was published May 24, 2022
A remote disclosure of sensitive information vulnerability was discovered in Aruba ClearPass... High Unreviewed
CVE-2021-40991 was published May 24, 2022
An improper access control vulnerability in PAN-OS software enables an attacker with... High Unreviewed
CVE-2021-3062 was published May 24, 2022
In Mahara 21.04 before 21.04.6, 21.10 before 21.10.4, and 22.04.2, files can sometimes be... High Unreviewed
CVE-2022-33913 was published Jun 21, 2022
ASUS Control Center API has a broken access control vulnerability. An unauthenticated remote... High Unreviewed
CVE-2022-26668 was published Jun 21, 2022
Multiple Improper Access Control was discovered in Nokia AirFrame BMC Web GUI < R18 Firmware v4... High Unreviewed
CVE-2022-28866 was published Oct 12, 2022
Improper access control in the Intel(R) DSA software for before version 22.2.14 may allow an... High Unreviewed
CVE-2022-26017 was published Aug 19, 2022
A vulnerability has been found in Adminer Login 1.4.4 and classified as problematic. This... High Unreviewed
CVE-2017-20066 was published Jun 21, 2022
Operation restriction bypass vulnerability in Space of Cybozu Garoon 4.0.0 to 5.9.0 allows a... High Unreviewed
CVE-2022-29484 was published Jul 5, 2022
An improper authorization issue in GitLab CE/EE affecting all versions from 13.7 prior to 14.10.5... High Unreviewed
CVE-2022-2229 was published Jul 2, 2022
Insufficient policy enforcement in Safe Browsing in Google Chrome on Mac prior to 102.0.5005.61... High Unreviewed
CVE-2022-1874 was published Jul 28, 2022
In OpenCTI through 5.2.4, a broken access control vulnerability has been identified in the... High Unreviewed
CVE-2022-30290 was published Jul 6, 2022
An issue was discovered in Inductive Automation Ignition before 7.9.20 and 8.x before 8.1.17. The... High Unreviewed
CVE-2022-36126 was published Jul 17, 2022
VMware vRealize Operations contains an authentication bypass vulnerability. An unauthenticated... High Unreviewed
CVE-2022-31675 was published Aug 11, 2022
An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers... High Unreviewed
CVE-2022-34571 was published Jul 26, 2022
An access control issue in Wavlink WN533A8 M33A8.V5030.190716 allows attackers to obtain... High Unreviewed
CVE-2022-34046 was published Jul 21, 2022
Incorrect access control in the install directory (C:\Ruby31-x64) of Rubyinstaller2 v3.1.2 and... High Unreviewed
CVE-2022-36562 was published Aug 31, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database