GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
242 advisories
Filter by severity
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005...
High
Unreviewed
CVE-2023-21611
was published
Jan 18, 2023
Dell command configuration, version 4.8 and prior, contains improper folder permission when...
High
Unreviewed
CVE-2022-34457
was published
Jan 18, 2023
A vulnerability was found in centic9 jgit-cookbook. It has been declared as problematic. This...
High
Unreviewed
CVE-2022-4817
was published
Dec 28, 2022
Certain ZKTeco products (ZEM500-510-560-760, ZEM600-800, ZEM720, ZMM) allow access to sensitive...
High
Unreviewed
CVE-2022-42953
was published
Dec 25, 2022
If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the...
High
Unreviewed
CVE-2022-45414
was published
Dec 22, 2022
An issue was discovered in the fp_newsletter (aka Newsletter subscriber management) extension...
High
Unreviewed
CVE-2022-47410
was published
Dec 14, 2022
An issue was discovered in the fp_newsletter (aka Newsletter subscriber management) extension...
High
Unreviewed
CVE-2022-47411
was published
Dec 14, 2022
Exposure of Sensitive System Information to an Unauthorized Control Sphere in GitHub repository...
High
Unreviewed
CVE-2022-4366
was published
Dec 8, 2022
PHPGurukul Blood Donor Management System 1.0 does not properly restrict access to admin/dashboard...
High
Unreviewed
CVE-2022-38813
was published
Nov 25, 2022
The LBS module has a vulnerability in geofencing API access. Successful exploitation of this...
High
Unreviewed
CVE-2022-44549
was published
Nov 10, 2022
A vulnerability in Hitachi Vantara Pentaho Business Analytics Server versions before 9.2.0.2 and...
High
Unreviewed
CVE-2021-45446
was published
Nov 2, 2022
The deployment script in the unsupported "OpenShift Extras" set of add-on scripts, in Red Hat...
High
Unreviewed
CVE-2013-4253
was published
Oct 19, 2022
Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to...
High
Unreviewed
CVE-2022-39870
was published
Oct 7, 2022
Improper access control vulnerability cloudNotificationManager.java in SmartThings prior to...
High
Unreviewed
CVE-2022-39871
was published
Oct 7, 2022
Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to...
High
Unreviewed
CVE-2022-39869
was published
Oct 7, 2022
Improper access control vulnerability in ContentsSharingActivity.java SmartThings prior to...
High
Unreviewed
CVE-2022-39865
was published
Oct 7, 2022
Improper access control vulnerability in RegisteredEventMediator.kt SmartThings prior to version...
High
Unreviewed
CVE-2022-39866
was published
Oct 7, 2022
Improper access control vulnerability in cloudNotificationManager.java SmartThings prior to...
High
Unreviewed
CVE-2022-39867
was published
Oct 7, 2022
Improper access control vulnerability in GedSamsungAccount.kt SmartThings prior to version 1.7.89...
High
Unreviewed
CVE-2022-39868
was published
Oct 7, 2022
Improper access control vulnerability in WifiSetupLaunchHelper in SmartThings prior to version 1...
High
Unreviewed
CVE-2022-39864
was published
Oct 7, 2022
IBM QRadar SIEM 7.4 and 7.5 data node rebalancing does not function correctly when using...
High
Unreviewed
CVE-2022-22480
was published
Oct 7, 2022
IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive...
High
Unreviewed
CVE-2021-38924
was published
Sep 15, 2022
SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Information Disclosure Vulnerability.
High
Unreviewed
CVE-2022-37958
was published
Sep 14, 2022
A vulnerability in the binding configuration of Cisco SD-WAN vManage Software containers could...
High
Unreviewed
CVE-2022-20696
was published
Sep 9, 2022
A local file inclusion (LFI) vulnerability in D-Link DIR 819 v1.06 allows attackers to cause a...
High
Unreviewed
CVE-2022-38258
was published
Sep 9, 2022
ProTip!
Advisories are also available from the
GraphQL API