GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
70 advisories
Filter by severity
SAP NetWeaver Application Server for ABAP and ABAP Platform allow users with high privileges to...
Low
Unreviewed
CVE-2024-44114
was published
Sep 10, 2024
Incorrect Authorization vulnerability in Yassine Idrissi Maintenance & Coming Soon Redirect...
Low
Unreviewed
CVE-2024-43944
was published
Aug 29, 2024
Logitech Options+ on MacOS prior 1.72 allows a local attacker to inject dynamic library within...
Low
Unreviewed
CVE-2024-8011
was published
Aug 25, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.1 prior to 16.11...
Low
Unreviewed
CVE-2024-4011
was published
Jun 27, 2024
Improper authorization verification vulnerability in Samsung Internet prior to version 24.0...
Low
Unreviewed
CVE-2024-20828
was published
Feb 6, 2024
An incorrect authorization vulnerability was identified in GitHub Enterprise Server that allowed...
Low
Unreviewed
CVE-2023-51380
was published
Dec 21, 2023
Sensitive information disclosure and manipulation due to improper authorization. The following...
Low
Unreviewed
CVE-2023-44154
was published
Sep 27, 2023
There is a permission and access control vulnerability in some ZTE mobile phones. Due to...
Low
Unreviewed
CVE-2023-25647
was published
Aug 17, 2023
Mattermost WelcomeBot plugin fails to to validate the membership status when inviting or adding...
Low
Unreviewed
CVE-2023-3613
was published
Jul 17, 2023
Mattermost fails to properly check the authorization of POST /api/v4/teams when passing a team...
Low
Unreviewed
CVE-2023-3584
was published
Jul 17, 2023
Improper Handling of Insufficient Permissions or Privileges vulnerability in SemChameleonHelper...
Low
Unreviewed
CVE-2023-21424
was published
Feb 9, 2023
Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T...
Low
Unreviewed
CVE-2022-39913
was published
Dec 8, 2022
Exposure of Sensitive Information from an Unauthorized Actor vulnerability in Samsung...
Low
Unreviewed
CVE-2022-39914
was published
Dec 8, 2022
Improper access control vulnerability in RCS call prior to SMR Dec-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-39903
was published
Dec 8, 2022
Zoho ManageEngine SupportCenter Plus through 11024 allows low-privileged users to view the...
Low
Unreviewed
CVE-2022-42903
was published
Nov 18, 2022
A vulnerability has been found in SourceCodester Simple Cold Storage Management System 1.0 and...
Low
Unreviewed
CVE-2022-3582
was published
Oct 18, 2022
Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical...
Low
Unreviewed
CVE-2022-36876
was published
Sep 10, 2022
Improper Authorization vulnerability in Video Editor prior to SMR Sep-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-36852
was published
Sep 10, 2022
Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-36857
was published
Sep 10, 2022
An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment...
Low
Unreviewed
CVE-2022-36117
was published
Aug 26, 2022
Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may...
Low
Unreviewed
CVE-2021-23188
was published
Aug 19, 2022
In Settings, there is a possible way for an application without permissions to read content of...
Low
Unreviewed
CVE-2022-20321
was published
Aug 13, 2022
An issue has been discovered in GitLab EE affecting all versions before 15.0.5, all versions...
Low
Unreviewed
CVE-2022-2459
was published
Aug 6, 2022
An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions...
Low
Unreviewed
CVE-2022-2456
was published
Aug 6, 2022
IBM Datapower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.5, and 2018.4.1.0...
Low
Unreviewed
CVE-2022-22326
was published
Aug 2, 2022
ProTip!
Advisories are also available from the
GraphQL API