Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,336 advisories

Loading
Moodle Logged in users could view all calendar events Moderate
CVE-2019-3848 was published for moodle/moodle (Composer) May 13, 2022
A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access... Moderate Unreviewed
CVE-2019-3887 was published May 13, 2022
Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 58.0.3029.81 for Mac,... Moderate Unreviewed
CVE-2017-5060 was published May 13, 2022
An exploitable improper authorization vulnerability exists in admin_peers API of cpp-ethereum's... Moderate Unreviewed
CVE-2017-12114 was published May 13, 2022
Incorrect Authorization in Jenkins Moderate
CVE-2018-1999004 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022
Incorrect Authorization in Jenkins Moderate
CVE-2018-1999003 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022
RESI Gemini-Net Web 4.2 is affected by Improper Access Control in authorization logic. An... Moderate Unreviewed
CVE-2022-29538 was published May 13, 2022
Users are able to read group conversations without actively taking part in them. Next to one to... Moderate Unreviewed
CVE-2021-27772 was published May 13, 2022
It was possible to disclose details of confidential notes created via the API in Gitlab CE/EE... Moderate Unreviewed
CVE-2022-1545 was published May 12, 2022
Under certain conditions, the SAP Host Agent logfile shows information which would otherwise be... Moderate Unreviewed
CVE-2022-28774 was published May 12, 2022
An improper authorization issue has been discovered in GitLab CE/EE affecting all versions prior... Moderate Unreviewed
CVE-2022-1124 was published May 12, 2022
An improper authorization vulnerability in Palo Alto Network Cortex XSOAR software enables... Moderate Unreviewed
CVE-2022-0027 was published May 12, 2022
Insufficient checks in System Management Unit (SMU) FeatureConfig may result in reenabling... Moderate Unreviewed
CVE-2021-26376 was published May 12, 2022
Incorrect access control in Yubico OTP functionality of the YubiKey hardware tokens along with... Moderate Unreviewed
CVE-2022-24584 was published May 12, 2022
This is a concurrency issue that can result in the wrong caller principal being returned from the... Moderate Unreviewed
CVE-2022-0866 was published May 11, 2022
Improper access control in GitLab CE/EE affecting all versions starting from 8.12 before 14.8.6,... Moderate Unreviewed
CVE-2022-1417 was published May 11, 2022
Windows Hyper-V Security Feature Bypass Vulnerability. Moderate Unreviewed
CVE-2022-24466 was published May 11, 2022
A Two-Factor Authentication (2FA) bypass vulnerability in "Simple 2FA Plugin for Moodle" by LMS... Moderate Unreviewed
CVE-2022-28601 was published May 11, 2022
Microsoft Office Security Feature Bypass Vulnerability. Moderate Unreviewed
CVE-2022-29107 was published May 11, 2022
Windows Print Spooler Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022... Moderate Unreviewed
CVE-2022-29114 was published May 11, 2022
IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.29, 8.0 before 8.0.0... Moderate Unreviewed
CVE-2013-0543 was published May 5, 2022
The OG access fields (visibility fields) implementation in Organic Groups (OG) module 7.x-2.x... Moderate Unreviewed
CVE-2013-4228 was published May 5, 2022
Review Board: URL processing gives unauthorized users access to review lists Moderate Unreviewed
CVE-2013-4411 was published May 5, 2022
Permissions were not properly verified in the API on projects using version control in Git. This... Moderate Unreviewed
CVE-2022-1502 was published May 5, 2022
Improper access control vulnerability in Contents To Window prior to SMR May-2022 Release 1... Moderate Unreviewed
CVE-2022-28782 was published May 4, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database