Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

385 advisories

Loading
An improper authorization check of local device settings in TeamViewer Remote between version 15... Moderate Unreviewed
CVE-2023-0837 was published Jun 14, 2023
The 2J-SlideShow Plugin for WordPress is vulnerable to authorization bypass due to a missing... Moderate Unreviewed
CVE-2020-36729 was published Jun 7, 2023
The Frontend File Manager plugin for WordPress is vulnerable to Privilege Escalation in versions... Moderate Unreviewed
CVE-2021-4344 was published Jun 7, 2023
The Gallery Images Ape plugin for WordPress is vulnerable to Arbitrary Plugin Deactivation in... Moderate Unreviewed
CVE-2019-25149 was published Jun 7, 2023
A security defect in Foundry's Comments functionality resulted in the retrieval of attachments to... Moderate Unreviewed
CVE-2023-30948 was published Jun 6, 2023
Kyverno resource with a deletionTimestamp may allow policy circumvention Moderate
CVE-2023-34091 was published for github.com/kyverno/kyverno (Go) Jun 5, 2023
bburky
Credited to bburky
The VK Blocks plugin for WordPress is vulnerable to improper authorization via the REST ... Moderate Unreviewed
CVE-2023-0584 was published Jun 3, 2023
The VK Blocks plugin for WordPress is vulnerable to improper authorization via the REST ... Moderate Unreviewed
CVE-2023-0583 was published Jun 3, 2023
On Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and in Splunk Cloud Platform... Moderate Unreviewed
CVE-2023-32717 was published Jun 1, 2023
In JetBrains TeamCity before 2023.05 improper permission checks allowed users without appropriate... Moderate Unreviewed
CVE-2023-34219 was published May 31, 2023
Improper Authorization in GitHub repository openemr/openemr prior to 7.0.1. Moderate Unreviewed
CVE-2023-2950 was published May 28, 2023
Sensitive information disclosure due to improper authorization. The following products are... Moderate Unreviewed
CVE-2023-2782 was published May 18, 2023
Sensitive information disclosure and manipulation due to improper authorization. The following... Moderate Unreviewed
CVE-2022-45450 was published May 18, 2023
Multiple vulnerabilities in the API of Cisco DNA Center Software could allow an authenticated,... Moderate Unreviewed
CVE-2023-20183 was published May 18, 2023
Multiple vulnerabilities in the API of Cisco DNA Center Software could allow an authenticated,... Moderate Unreviewed
CVE-2023-20184 was published May 18, 2023
Multiple vulnerabilities in the API of Cisco DNA Center Software could allow an authenticated,... Moderate Unreviewed
CVE-2023-20182 was published May 18, 2023
Improper Authorization in RestAPI in Checkmk GmbH's Checkmk versions <2.1.0p28 and <2.2.0b8... Moderate Unreviewed
CVE-2023-22348 was published May 17, 2023
An improper authorization vulnerability exists in Rocket.Chat <6.0 that could allow a hacker to... Moderate Unreviewed
CVE-2023-28325 was published May 12, 2023
Improper authorization in the Intel(R) SCS software all versions may allow an authenticated user... Moderate Unreviewed
CVE-2022-43465 was published May 10, 2023
Improper authorization in Intel(R) EMA Configuration Tool before version 1.0.4 and Intel(R) MC... Moderate Unreviewed
CVE-2022-41610 was published May 10, 2023
Improper authorization in the Intel(R) EMA software before version 1.9.0.0 may allow an... Moderate Unreviewed
CVE-2022-45128 was published May 10, 2023
A vulnerability has been discovered in Rocket.Chat, where editing messages can change the... Moderate Unreviewed
CVE-2023-28317 was published May 10, 2023
A vulnerability has been discovered in Rocket.Chat, where messages can be hidden regardless of... Moderate Unreviewed
CVE-2023-28318 was published May 10, 2023
A vulnerability was found in SourceCodester Service Provider Management System 1.0 and classified... Moderate Unreviewed
CVE-2023-2345 was published Apr 27, 2023
Improper authorization in Gitlab EE affecting all versions from 12.3.0 before 15.8.5, all... Moderate Unreviewed
CVE-2023-1167 was published Apr 5, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database