Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,386
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,480
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

150 advisories

Loading
The User Access Manager WordPress plugin before 2.2.18 prioritizes getting a visitor's IP from... Moderate Unreviewed
CVE-2022-1601 was published Aug 30, 2023
The foundry campaigns service was found to be vulnerable to an unauthenticated information... Moderate Unreviewed
CVE-2023-30950 was published Aug 4, 2023
PAX Technology A930 PayDroid_7.1.1_Virgo_V04.5.02_20220722 allows attackers to compile a... Moderate Unreviewed
CVE-2023-27199 was published Jul 5, 2023
In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend... Moderate Unreviewed
CVE-2023-29147 was published Jun 30, 2023
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this... Moderate Unreviewed
CVE-2023-34158 was published Jun 19, 2023
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this... Moderate Unreviewed
CVE-2023-34160 was published Jun 19, 2023
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this... Moderate Unreviewed
CVE-2023-34167 was published Jun 19, 2023
There is a traffic hijacking vulnerability in Huawei routers. Successful exploitation of this... Moderate Unreviewed
CVE-2022-48469 was published Jun 16, 2023
Vulnerability of HwWatchHealth being hijacked.Successful exploitation of this vulnerability may... Moderate Unreviewed
CVE-2023-34157 was published Jun 16, 2023
An issue has been discovered in GitLab CE/EE affecting all versions before 15.10.8, all versions... Moderate Unreviewed
CVE-2023-2001 was published Jun 7, 2023
The Formidable Forms WordPress plugin before 6.1 uses several potentially untrusted headers to... Moderate Unreviewed
CVE-2023-0816 was published Mar 27, 2023
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2023-21794 was published Feb 14, 2023
When exiting fullscreen mode, an iframe could have confused the browser about the current state... Moderate Unreviewed
CVE-2022-31738 was published Dec 22, 2022
Session information easily guessable vulnerability exists in Kyocera Document Solutions MFPs and... Moderate Unreviewed
CVE-2022-41798 was published Dec 5, 2022
WithSecure through 2022-08-10 allows attackers to cause a denial of service (issue 3 of 5). Moderate Unreviewed
CVE-2022-38164 was published Nov 8, 2022
"IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Web services could allow a man-in-the... Moderate Unreviewed
CVE-2022-38712 was published Nov 4, 2022
Windows NTLM Spoofing Vulnerability. Moderate Unreviewed
CVE-2022-35770 was published Oct 12, 2022
Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed... Moderate Unreviewed
CVE-2021-27853 was published Sep 28, 2022
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using combinations... Moderate Unreviewed
CVE-2021-27854 was published Sep 28, 2022
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP... Moderate Unreviewed
CVE-2021-27861 was published Sep 28, 2022
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP... Moderate Unreviewed
CVE-2021-27862 was published Sep 28, 2022
Tesla Model 3 V11.0(2022.4.5.1 6b701552d7a6) Tesla mobile app v4.23 is vulnerable to... Moderate Unreviewed
CVE-2022-37709 was published Sep 17, 2022
dproxy-nexgen (aka dproxy nexgen) forwards and caches DNS queries with the CD (aka checking... Moderate Unreviewed
CVE-2022-33991 was published Aug 16, 2022
Due to a bug in the handling of the communication between the client and server, it was possible... Moderate Unreviewed
CVE-2022-35629 was published Jul 30, 2022
Incorrect security UI in Downloads in Google Chrome on Android prior to 101.0.4951.41 allowed a... Moderate Unreviewed
CVE-2022-1495 was published Jul 27, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database