GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,394
Composer 5,352
Erlang 44
GitHub Actions 45
Go 3,227
Maven 6,312
npm 5,194
NuGet 864
pip 4,502
Pub 12
RubyGems 995
Rust 1,187
Swift 51

Unreviewed advisories

All unreviewed 293,886

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

97 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy... High Unreviewed

CVE-2026-22082 was published Jan 9, 2026

All-Dynamics Software enlogic:show 2.0.2 contains a session fixation vulnerability that allows... High Unreviewed

CVE-2020-36913 was published Jan 6, 2026

Screen SFT DAB 1.9.3 contains an authentication bypass vulnerability that allows attackers to... High Unreviewed

CVE-2023-53775 was published Dec 11, 2025

Screen SFT DAB 1.9.3 contains an authentication bypass vulnerability that allows attackers to... High Unreviewed

CVE-2023-53776 was published Dec 11, 2025

Screen SFT DAB 1.9.3 contains a weak session management vulnerability that allows attackers to... High Unreviewed

CVE-2023-53741 was published Dec 10, 2025

Session Fixation vulnerability in Rolantis Information Technologies Agentis allows Session... High Unreviewed

CVE-2025-10228 was published Oct 14, 2025

This vulnerability exists in Meon KYC solutions due to improper handling of access and refresh... High Unreviewed

CVE-2025-42602 was published Apr 23, 2025

When configured using SAML, a session fixation vulnerability in the GlobalProtect™ login enables... High Unreviewed

CVE-2025-0126 was published Apr 11, 2025

Mailcow through 2024-11b has a session fixation vulnerability in the web panel. It allows remote... High Unreviewed

CVE-2024-56529 was published Jan 29, 2025

A session fixation in Fortinet FortiOS version 7.4.0 through 7.4.3 and 7.2.0 through 7.2.7 and 7... High Unreviewed

CVE-2023-50176 was published Nov 12, 2024

In NetAdmin 4.0.30319, an attacker can steal a valid session cookie and inject it into another... High Unreviewed

CVE-2024-48955 was published Oct 29, 2024

The H2-DM1E PLC's authentication protocol appears to utilize either a custom encoding scheme or a... High Unreviewed

CVE-2024-45368 was published Sep 13, 2024

An issue in Outline <= v0.76.1 allows attackers to execute a session hijacking attack via user... High Unreviewed

CVE-2024-37829 was published Jul 9, 2024

An issue was discovered in Mbed TLS through 3.5.1. In mbedtls_ssl_session_reset, the maximum... High Unreviewed

CVE-2023-52353 was published Jan 22, 2024

A session hijacking vulnerability has been detected in the Imou Life application affecting... High Unreviewed

CVE-2023-6913 was published Dec 19, 2023

A session fixation vulnerability in South River Technologies' Titan MFT and Titan SFTP servers on... High Unreviewed

CVE-2023-45687 was published Oct 16, 2023

Session Fixation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows... High Unreviewed

CVE-2023-3711 was published Sep 12, 2023

An issue was discovered with the JSESSION IDs in Xiamen Si Xin Communication Technology Video... High Unreviewed

CVE-2023-34656 was published Jun 29, 2023

Some access control products are vulnerable to a session hijacking attack because the product... High Unreviewed

CVE-2023-28809 was published Jun 15, 2023

A session takeover vulnerability exists in FICO Origination Manager Decision Module 4.8.1 due to... High Unreviewed

CVE-2023-30056 was published May 9, 2023

Session Fixation vulnerability in in function login in class.auth.php in osTicket through 1.16.2. High Unreviewed

CVE-2022-31888 was published Apr 6, 2023

Session fixation vulnerability in CuppaCMS thru commit 4c9b742b23b924cf4c1f943f48b278e06a17e297... High Unreviewed

CVE-2021-29368 was published Jan 20, 2023

An issue was discovered in Simmeth Lieferantenmanager before 5.6. Due to errors in session... High Unreviewed

CVE-2022-44017 was published Dec 25, 2022

An OAuth session fixation vulnerability existed in the VPN login flow, where an attacker could... High Unreviewed

CVE-2020-15679 was published Dec 22, 2022

An issue was discovered in BACKCLICK Professional 5.9.63. Due to an unsafe implementation of... High Unreviewed

CVE-2022-44007 was published Nov 17, 2022

Previous1…4 Next

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

97 advisories