GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,513

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,302 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.40.5 allows local... Moderate Unreviewed

CVE-2022-28542 was published Apr 12, 2022

Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5 allows attacker... Low Unreviewed

CVE-2022-28775 was published Apr 12, 2022

Improper access control vulnerability in Samsung Security Supporter prior to version 1.2.40.0... Low Unreviewed

CVE-2022-28778 was published Apr 12, 2022

Improper access control vulnerability in Galaxy Store prior to version 4.5.36.4 allows attacker... High Unreviewed

CVE-2022-28776 was published Apr 12, 2022

Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local... Low Unreviewed

CVE-2022-28777 was published Apr 12, 2022

An incorrect access control issue at /admin/run_ajax.php in zbzcms v1.0 allows attackers to... Critical Unreviewed

CVE-2022-27128 was published Apr 11, 2022

An unauthorized file deletion vulnerability in Telesquare TLR-2855KS6 via DELETE method can allow... Critical Unreviewed

CVE-2021-46419 was published Apr 8, 2022

An unauthorized file creation vulnerability in Telesquare TLR-2855KS6 via PUT method can allow... High Unreviewed

CVE-2021-46418 was published Apr 8, 2022

aEnrich a+HRD has inadequate privilege restrictions, an unauthenticated remote attacker can use... Critical Unreviewed

CVE-2022-26676 was published Apr 8, 2022

A vulnerability in the Common Execution Environment (CEE) ConfD CLI of Cisco Ultra Cloud Core -... High Unreviewed

CVE-2022-20762 was published Apr 7, 2022

Seyeon Tech Co., Ltd FlexWATCH FW3170-PS-E Network Video System 4.23-3000_GY allows attackers to... High Unreviewed

CVE-2022-25584 was published Apr 6, 2022

Improper Authorization in GitHub repository phpipam/phpipam prior to 1.4.6. Moderate Unreviewed

CVE-2022-1224 was published Apr 5, 2022

Improper Access Control in GitHub repository phpipam/phpipam prior to 1.4.6. Moderate Unreviewed

CVE-2022-1223 was published Apr 5, 2022

The Amelia WordPress plugin before 1.0.49 does not have proper authorisation when managing... Moderate Unreviewed

CVE-2022-0825 was published Apr 5, 2022

The Material Design for Contact Form 7 WordPress plugin through 2.6.4 does not check... Moderate Unreviewed

CVE-2022-0404 was published Apr 5, 2022

The Amelia WordPress plugin before 1.0.48 does not have proper authorisation when handling Amelia... Moderate Unreviewed

CVE-2022-0837 was published Apr 5, 2022

An improper access control vulnerability in GitLab CE/EE affecting all versions from 13.11 prior... Moderate Unreviewed

CVE-2022-1105 was published Apr 5, 2022

After Automation Direct CLICK PLC CPU Modules: C0-1x CPUs with firmware prior to v3.00 is... Critical Unreviewed

CVE-2021-32986 was published Apr 5, 2022

Xerox ColorQube 8580 was discovered to contain an access control issue which allows attackers to... High Unreviewed

CVE-2022-26572 was published Apr 5, 2022

Incorrect authorization in the Asana integration's branch restriction feature in all versions of... Moderate Unreviewed

CVE-2022-0740 was published Apr 5, 2022

Forcepoint One Endpoint prior to version 22.01 installed on Microsoft Windows is vulnerable to... Moderate Unreviewed

CVE-2022-27608 was published Apr 5, 2022

Forcepoint One Endpoint prior to version 22.01 installed on Microsoft Windows does not provide... Moderate Unreviewed

CVE-2022-27609 was published Apr 5, 2022

A local unauthorized read access to files vulnerability was discovered in HPE OneView version(s):... Moderate Unreviewed

CVE-2022-23700 was published Apr 5, 2022

Improper Authorization in GitHub repository janeczku/calibre-web prior to 0.6.16. Moderate Unreviewed

CVE-2022-0406 was published Apr 4, 2022

On Arista Strata family products which have “TCAM profile” feature enabled when Port IPv4 access... High Unreviewed

CVE-2021-28504 was published Apr 3, 2022

Previous 1…85…93 Next

Previous 1 2 … 83 84 85 86 87 … 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,302 advisories