GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,557
Composer 5,386
Erlang 44
GitHub Actions 46
Go 3,270
Maven 6,323
npm 5,240
NuGet 867
pip 4,517
Pub 12
RubyGems 998
Rust 1,194
Swift 51

Unreviewed advisories

All unreviewed 294,112

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

60 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

TOTOLINK EX1800T V9.1.0cu.2112_B20220316 has a vulnerability in the apcliEncrypType parameter... Critical Unreviewed

CVE-2024-34257 was published May 8, 2024

DedeCMS V5.7.114 is vulnerable to deletion of any file via mail_file_manage.php. Critical Unreviewed

CVE-2024-33749 was published May 6, 2024

lunary-ai/lunary version 1.0.1 is vulnerable to improper authorization, allowing removed members... Critical Unreviewed

CVE-2024-1741 was published Apr 10, 2024

EisBaer Scada - CWE-285: Improper Authorization Critical Unreviewed

CVE-2023-42491 was published Oct 25, 2023

A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS... Critical Unreviewed

CVE-2023-20186 was published Sep 27, 2023

Parameter verification vulnerability in the installd module. Successful exploitation of this... Critical Unreviewed

CVE-2023-39399 was published Aug 13, 2023

Parameter verification vulnerability in the installd module. Successful exploitation of this... Critical Unreviewed

CVE-2023-39402 was published Aug 13, 2023

Parameter verification vulnerability in the installd module. Successful exploitation of this... Critical Unreviewed

CVE-2023-39400 was published Aug 13, 2023

Parameter verification vulnerability in the installd module. Successful exploitation of this... Critical Unreviewed

CVE-2023-39398 was published Aug 13, 2023

Parameter verification vulnerability in the installd module. Successful exploitation of this... Critical Unreviewed

CVE-2023-39401 was published Aug 13, 2023

Parameter verification vulnerability in the installd module. Successful exploitation of this... Critical Unreviewed

CVE-2023-39403 was published Aug 13, 2023

This vulnerability exists in Milesight 4K/H.265 Series NVR models (MS-Nxxxx-xxG, MS-Nxxxx-xxE, MS... Critical Unreviewed

CVE-2023-30467 was published Apr 28, 2023

Improper Authorization vulnerability in ForgeRock Inc. Access Management allows Authentication... Critical Unreviewed

CVE-2022-3748 was published Apr 14, 2023

The listed versions of AVEVA Plant SCADA and AVEVA Telemetry Server are vulnerable to an improper... Critical Unreviewed

CVE-2023-1256 was published Mar 16, 2023

Because the web management interface for Unified Intents' Unified Remote solution does not itself... Critical Unreviewed

CVE-2022-3229 was published Feb 7, 2023

A remote unprivileged attacker can interact with the configuration interface of a Flexi-Compact... Critical Unreviewed

CVE-2022-27583 was published Nov 1, 2022

Improper authorization in Dynamic Lockscreen prior to SMR Sep-2022 Release 1 in Android R(11) and... Critical Unreviewed

CVE-2022-39862 was published Oct 7, 2022

Improper Authorization in GitHub repository kromitgmbh/titra prior to 0.79.1. Critical Unreviewed

CVE-2022-2595 was published Aug 2, 2022

4MOSAn GCB Doctor’s login page has improper validation of Cookie, which allows an unauthenticated... Critical Unreviewed

CVE-2021-42338 was published May 24, 2022

Tad Book3 editing book page does not perform identity verification. Remote attackers can use the... Critical Unreviewed

CVE-2021-41974 was published May 24, 2022

Improper authorization vulnerability in QSAN Storage Manager allows remote privileged users to... Critical Unreviewed

CVE-2021-32523 was published May 24, 2022

An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 ... Critical Unreviewed

CVE-2021-28799 was published May 24, 2022

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT... Critical Unreviewed

CVE-2020-12500 was published May 24, 2022

In WebAccess, versions 8.4.1 and prior, an improper authorization vulnerability may allow an... Critical Unreviewed

CVE-2019-13550 was published May 24, 2022

Incorrect configuration in deb package in ClickHouse before 1.1.54131 could lead to unauthorized... Critical Unreviewed

CVE-2018-14670 was published May 24, 2022

Previous 123 Next

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

60 advisories