GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,296
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
195 advisories
Filter by severity
An authentication bypass vulnerability in the Palo Alto Networks PAN-OS 8.1 web interface allows...
High
Unreviewed
CVE-2022-0030
was published
Oct 12, 2022
A flaw was found in Samba. The KDC accepts kpasswd requests encrypted with any key known to it....
High
Unreviewed
CVE-2022-32744
was published
Aug 26, 2022
Improperly Implemented Security Check vulnerability in the SonicWall Hosted Email Security leads...
High
Unreviewed
CVE-2022-2324
was published
Jul 30, 2022
Saia Burgess Controls (SBC) PCD through 2022-05-06 allows Authentication bypass. According to...
High
Unreviewed
CVE-2022-30319
was published
Jul 29, 2022
IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.7 and Open Liberty are...
High
Unreviewed
CVE-2022-22476
was published
Jul 9, 2022
The authentication mechanism used by technicians on the tested version of Dominion Voting Systems...
High
Unreviewed
CVE-2022-1745
was published
Jun 25, 2022
The iQ Block Country WordPress plugin through 1.2.13 does not properly checks HTTP headers in...
High
Unreviewed
CVE-2022-1762
was published
Jun 14, 2022
Microsoft Edge (Chromium-based) Spoofing Vulnerability
High
Unreviewed
CVE-2021-42308
was published
May 24, 2022
ThroughTek's Kalay Platform 2.0 network allows an attacker to impersonate an arbitrary ThroughTek...
High
Unreviewed
CVE-2021-28372
was published
May 24, 2022
If exploited, this vulnerability allows an attacker to access resources which are not otherwise...
High
Unreviewed
CVE-2021-28810
was published
May 24, 2022
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-28478, CVE-2021...
High
Unreviewed
CVE-2021-26418
was published
May 24, 2022
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-26418, CVE-2021...
High
Unreviewed
CVE-2021-28478
was published
May 24, 2022
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-26418, CVE-2021...
High
Unreviewed
CVE-2021-31172
was published
May 24, 2022
Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021...
High
Unreviewed
CVE-2021-31195
was published
May 24, 2022
Microsoft Exchange Server Spoofing Vulnerability
High
Unreviewed
CVE-2021-31209
was published
May 24, 2022
Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by a token spoofing...
High
Unreviewed
CVE-2020-36128
was published
May 24, 2022
An authentication bypass vulnerability in the Juniper Networks Paragon Active Assurance Control...
High
Unreviewed
CVE-2021-0232
was published
May 24, 2022
OpenAsset Digital Asset Management (DAM) through 12.0.19 does not correctly determine the HTTP...
High
Unreviewed
CVE-2020-28856
was published
May 24, 2022
The custom GINA/CP module in ANIXIS Password Reset Client before version 3.22 allows remote...
High
Unreviewed
CVE-2018-5354
was published
May 24, 2022
A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that allows for...
High
Unreviewed
CVE-2019-15022
was published
May 24, 2022
OpenDMARC through 1.3.2 and 1.4.x through 1.4.0-Beta1 is prone to a signature-bypass...
High
Unreviewed
CVE-2019-16378
was published
May 24, 2022
MailMate before 1.11.3 mishandles a suspicious HTML/MIME structure in a signed/encrypted email.
High
Unreviewed
CVE-2018-15588
was published
May 13, 2022
KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by...
High
Unreviewed
CVE-2017-8422
was published
May 13, 2022
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and...
High
Unreviewed
CVE-2017-6405
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API