GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,952
Composer 4,274
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,419
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,583

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

870 advisories

Filter by severity

Sort by

Least recently updated

In shouldUseNoOpLocation of CameraActivity.java, there is a possible confused deputy due to a... Moderate Unreviewed

CVE-2024-0017 was published Feb 16, 2024

When LDAP remote authentication is configured on F5OS, a remote user without an assigned role... Moderate Unreviewed

CVE-2024-24966 was published Feb 14, 2024

An issue has been discovered in GitLab EE Premium and Ultimate affecting versions 16.4.3, 16.5.3,... Moderate Unreviewed

CVE-2023-6564 was published Feb 8, 2024

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to CAPTCHA Bypass in versions up... Moderate Unreviewed

CVE-2023-6963 was published Feb 6, 2024

An incorrect authorization vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed

CVE-2023-32967 was published Feb 2, 2024

An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. An attacker within RF range can... Moderate Unreviewed

CVE-2023-35836 was published Jan 24, 2024

In Splunk Enterprise versions below 9.0.8 and 9.1.3, Splunk app key value store (KV Store)... Moderate Unreviewed

CVE-2024-23675 was published Jan 22, 2024

The WooCommerce WordPress plugin before 6.2.1 does not have proper authorisation check when... Moderate Unreviewed

CVE-2022-0775 was published Jan 16, 2024

An improper access control vulnerability exists in GitLab Remote Development affecting all... Moderate Unreviewed

CVE-2023-6955 was published Jan 12, 2024

SAP S/4HANA Finance for (Advanced Payment Management) - versions SAPSCORE 128, S4CORE 107, does... Moderate Unreviewed

CVE-2024-21736 was published Jan 9, 2024

There is an illegal memory access vulnerability of ZTE's ZXCLOUD iRAI product.When the... Moderate Unreviewed

CVE-2023-41779 was published Jan 3, 2024

An incorrect authorization vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed

CVE-2023-51379 was published Dec 21, 2023

Inadequate validation of permissions when employing remote tools and macros via the context... Moderate Unreviewed

CVE-2023-7047 was published Dec 21, 2023

An attacker could create malicious requests to obtain sensitive information about the... Moderate Unreviewed

CVE-2023-50705 was published Dec 20, 2023

Incorrect selection of fuse values in the Controller 7000 platform allows an attacker to bypass... Moderate Unreviewed

CVE-2023-6355 was published Dec 19, 2023

An issue was discovered in Zammad before 6.2.0. When listing tickets linked to a knowledge base... Moderate Unreviewed

CVE-2023-50457 was published Dec 10, 2023

Improper Authentication vulnerability in Samsung Pass prior to version 4.3.00.17 allows physical... Moderate Unreviewed

CVE-2023-42575 was published Dec 5, 2023

Improper authorization verification vulnerability in AR Emoji prior to SMR Dec-2023 Release 1... Moderate Unreviewed

CVE-2023-42569 was published Dec 5, 2023

An Insecure Credential Management issue discovered in Connectize AC21000 G6 641.139.1.1256 allows... Moderate Unreviewed

CVE-2023-24047 was published Dec 5, 2023

An issue has been discovered in GitLab EE affecting all versions starting from 16.2 before 16.4.3... Moderate Unreviewed

CVE-2023-5995 was published Dec 1, 2023

An issue has been discovered in GitLab affecting all versions starting from 9.2 before 16.4.3,... Moderate Unreviewed

CVE-2023-4317 was published Dec 1, 2023

An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3,... Moderate Unreviewed

CVE-2023-3964 was published Dec 1, 2023

Incorrect Authorization vulnerability in NicheAddons Events Addon for Elementor allows Accessing... Moderate Unreviewed

CVE-2023-47827 was published Nov 30, 2023

The WP Hotel Booking WordPress plugin before 2.0.8 does not have proper authorisation when... Moderate Unreviewed

CVE-2023-5799 was published Nov 20, 2023

The myStickymenu WordPress plugin before 2.6.5 does not adequately authorize some ajax calls,... Moderate Unreviewed

CVE-2023-5509 was published Nov 20, 2023

Previous 1 2 3 4 5 6 7 … 34 35 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

870 advisories