GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,819

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

516 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper authorization vulnerability in Knoxguard prior to SMR Jul-2022 Release 1 allows local... Moderate Unreviewed

CVE-2022-33702 was published Jul 13, 2022

Improper authorization in isemtelephony prior to SMR Jul-2022 Release 1 allows attacker to obtain... Low Unreviewed

CVE-2022-30757 was published Jul 13, 2022

Improper Authorization in GitHub repository saltstack/salt prior to 3004.2. Unknown Unreviewed

CVE-2022-2282 was published Jul 2, 2022

RoboHelp Server earlier versions than RHS 11 Update 3 are affected by an Improper Authorization... Moderate Unreviewed

CVE-2022-30670 was published Jun 17, 2022

A vulnerability classified as critical was found in SourceCodester Prison Management System 1.0.... High Unreviewed

CVE-2022-2019 was published Jun 10, 2022

Improper caller check in AR Emoji prior to SMR Jun-2022 Release 1 allows untrusted applications... High Unreviewed

CVE-2022-30717 was published Jun 8, 2022

Improper authorization in Samsung Pass prior to 1.0.00.33 allows physical attackers to acess... Moderate Unreviewed

CVE-2022-30730 was published Jun 8, 2022

Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access... High Unreviewed

CVE-2022-30746 was published Jun 8, 2022

Dell OpenManage Enterprise Versions 3.8.3 and prior contain an improper authorization... High Unreviewed

CVE-2022-26857 was published May 27, 2022

A logic issue was addressed with improved state management. This issue is fixed in iTunes 12.12.4... High Unreviewed

CVE-2022-26773 was published May 27, 2022

The “Teacher Edit” function of ShinHer StudyOnline System does not perform authority control.... High Unreviewed

CVE-2021-42330 was published May 24, 2022

The “Study Edit” function of ShinHer StudyOnline System does not perform permission control.... Moderate Unreviewed

CVE-2021-42331 was published May 24, 2022

4MOSAn GCB Doctor’s login page has improper validation of Cookie, which allows an unauthenticated... Critical Unreviewed

CVE-2021-42338 was published May 24, 2022

The learning history page of the Easytest is vulnerable by permission bypass. After obtaining a... Moderate Unreviewed

CVE-2021-42336 was published May 24, 2022

The permission control of AIFU cashier management salary query function can be bypassed, thus... Moderate Unreviewed

CVE-2021-42337 was published May 24, 2022

The management page of the Orca HCM digital learning platform does not perform identity... High Unreviewed

CVE-2021-35964 was published May 24, 2022

The “List View” function of ShinHer StudyOnline System is not under authority control. After... Moderate Unreviewed

CVE-2021-42332 was published May 24, 2022

SAP Commerce - versions 2105.3, 2011.13, 2005.18, 1905.34, does not perform necessary... High Unreviewed

CVE-2021-40502 was published May 24, 2022

The OptinMonster WordPress plugin is vulnerable to sensitive information disclosure and... High Unreviewed

CVE-2021-39341 was published May 24, 2022

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 cloud portal allows for self... High Unreviewed

CVE-2021-38486 was published May 24, 2022

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An... Moderate Unreviewed

CVE-2021-33723 was published May 24, 2022

Versions up to, and including, 1.0.6, of the Access Demo Importer WordPress plugin are vulnerable... High Unreviewed

CVE-2021-39317 was published May 24, 2022

Tad Honor viewing book list function is vulnerable to authorization bypass, thus remote attackers... Moderate Unreviewed

CVE-2021-41564 was published May 24, 2022

Tad Web is vulnerable to authorization bypass, thus remote attackers can exploit the... Moderate Unreviewed

CVE-2021-41568 was published May 24, 2022

Tad Book3 editing book page does not perform identity verification. Remote attackers can use the... Critical Unreviewed

CVE-2021-41974 was published May 24, 2022

Previous 1…16…21 Next

Previous 1 2 … 14 15 16 17 18 19 20 21 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

516 advisories