GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,553
Composer 5,554
Erlang 49
GitHub Actions 49
Go 3,426
Maven 6,365
npm 5,645
NuGet 882
pip 4,670
Pub 13
RubyGems 1,029
Rust 1,212
Swift 53

Unreviewed advisories

All unreviewed 296,666

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

581 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper authorization in Dynamic Lockscreen prior to SMR Sep-2022 Release 1 in Android R(11) and... Critical Unreviewed

CVE-2022-39862 was published Oct 7, 2022

Improper Authorization vulnerability exists in the Workplace X WebUI of the Hitachi Energy... High Unreviewed

CVE-2022-29490 was published Sep 13, 2022

Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical... Low Unreviewed

CVE-2022-36876 was published Sep 10, 2022

Improper Authorization vulnerability in Video Editor prior to SMR Sep-2022 Release 1 allows local... Low Unreviewed

CVE-2022-36852 was published Sep 10, 2022

Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1 allows... Low Unreviewed

CVE-2022-36857 was published Sep 10, 2022

Improper Authorization vulnerability in setDualDARPolicyCmd prior to SMR Sep-2022 Release 1... Moderate Unreviewed

CVE-2022-36848 was published Sep 10, 2022

Improper Authorization in GitHub repository chatwoot/chatwoot prior to 2.8. High Unreviewed

CVE-2022-2901 was published Sep 7, 2022

The Transposh WordPress Translation plugin for WordPress is vulnerable to unauthorized setting... Moderate Unreviewed

CVE-2022-2461 was published Sep 7, 2022

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey... Moderate Unreviewed

CVE-2022-32838 was published Aug 25, 2022

Sequi PortBloque S has an improper authorization vulnerability, which may allow a low-privileged... High Unreviewed

CVE-2022-2661 was published Aug 17, 2022

Using off-the-shelf commodity hardware, the Unitree Go 1 robotics platform version H0.1.7 and H0... Moderate Unreviewed

CVE-2022-2675 was published Aug 6, 2022

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it... High Unreviewed

CVE-2022-31609 was published Aug 6, 2022

Improper Authorization in GitHub repository kromitgmbh/titra prior to 0.79.1. Critical Unreviewed

CVE-2022-2595 was published Aug 2, 2022

A flaw was found in pki-core, which could allow a user to get a certificate for another user... Moderate Unreviewed

CVE-2022-2393 was published Jul 15, 2022

Improper authorization vulnerability in Knoxguard prior to SMR Jul-2022 Release 1 allows local... Moderate Unreviewed

CVE-2022-33702 was published Jul 13, 2022

Information exposure in Calendar prior to version 12.3.05.10000 allows attacker to access... Low Unreviewed

CVE-2022-33705 was published Jul 13, 2022

Improper authorization in isemtelephony prior to SMR Jul-2022 Release 1 allows attacker to obtain... Low Unreviewed

CVE-2022-30757 was published Jul 13, 2022

Improper Authorization in GitHub repository saltstack/salt prior to 3004.2. Unknown Unreviewed

CVE-2022-2282 was published Jul 2, 2022

RoboHelp Server earlier versions than RHS 11 Update 3 are affected by an Improper Authorization... Moderate Unreviewed

CVE-2022-30670 was published Jun 17, 2022

A vulnerability classified as critical was found in SourceCodester Prison Management System 1.0.... High Unreviewed

CVE-2022-2019 was published Jun 10, 2022

Improper caller check in AR Emoji prior to SMR Jun-2022 Release 1 allows untrusted applications... High Unreviewed

CVE-2022-30717 was published Jun 8, 2022

Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access... High Unreviewed

CVE-2022-30746 was published Jun 8, 2022

Improper authorization in Samsung Pass prior to 1.0.00.33 allows physical attackers to acess... Moderate Unreviewed

CVE-2022-30730 was published Jun 8, 2022

Dell OpenManage Enterprise Versions 3.8.3 and prior contain an improper authorization... High Unreviewed

CVE-2022-26857 was published May 27, 2022

A logic issue was addressed with improved state management. This issue is fixed in iTunes 12.12.4... High Unreviewed

CVE-2022-26773 was published May 27, 2022

Previous 1…18…24 Next

Previous 1 2 … 16 17 18 19 20 … 23 24 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

581 advisories