GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,513

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,337 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions... Moderate Unreviewed

CVE-2022-2303 was published Aug 6, 2022

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 before 15... Moderate Unreviewed

CVE-2022-2512 was published Aug 6, 2022

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.6 prior to... Moderate Unreviewed

CVE-2022-2539 was published Aug 6, 2022

Affected versions of Atlassian Jira Service Management Server and Data Center allow remote... Moderate Unreviewed

CVE-2022-36800 was published Aug 4, 2022

An improper access control vulnerability [CWE-284] in FortiOS versions 6.2.0 through 6.2.11, 6.4... Moderate Unreviewed

CVE-2022-23442 was published Aug 4, 2022

A unverified password change in Fortinet FortiADC version 6.2.0 through 6.2.3, 6.1.x, 6.0.x, 5.x... Moderate Unreviewed

CVE-2022-27484 was published Aug 4, 2022

HCL Launch could allow an authenticated user to obtain sensitive information in some instances... Moderate Unreviewed

CVE-2022-27551 was published Aug 4, 2022

IBM CICS TX 11.1 does not set the secure attribute on authorization tokens or session cookies.... Moderate Unreviewed

CVE-2022-34307 was published Aug 2, 2022

Inappropriate implementation in WebGL in Google Chrome prior to 101.0.4951.41 allowed a remote... Moderate Unreviewed

CVE-2022-1482 was published Jul 27, 2022

Inappropriate implementation in WebAuthentication in Google Chrome prior to 101.0.4951.41 allowed... Moderate Unreviewed

CVE-2022-1499 was published Jul 27, 2022

The Professional Social Sharing Buttons, Icons & Related Posts WordPress plugin before 9.7.6 does... Moderate Unreviewed

CVE-2022-0594 was published Jul 26, 2022

Inappropriate implementation in Virtual Keyboard in Google Chrome on Chrome OS prior to 100.0... Moderate Unreviewed

CVE-2022-1132 was published Jul 24, 2022

Unauthenticated WordPress Options Change vulnerability in Biplob Adhikari's Accordions plugin <=... Moderate Unreviewed

CVE-2022-33198 was published Jul 22, 2022

Unauthenticated Arbitrary Option Update vulnerability in biplob018's Shortcode Addons plugin <= 3... Moderate Unreviewed

CVE-2022-34487 was published Jul 22, 2022

The plugin Wbcom Designs – BuddyPress Group Reviews for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2022-2108 was published Jul 19, 2022

OpenZeppelin Contracts for Cairo account cannot process transactions on Goerli Moderate

CVE-2022-31153 was published for openzeppelin-cairo-contracts (pip) Jul 15, 2022

The Guest account feature in Mattermost version 6.7.0 and earlier fails to properly restrict the... Moderate Unreviewed

CVE-2022-2408 was published Jul 15, 2022

There is a unauthorized broadcast in the SprdContactsProvider. A third-party app could use this... Moderate Unreviewed

CVE-2022-20217 was published Jul 14, 2022

Improper authorization vulnerability in Knoxguard prior to SMR Jul-2022 Release 1 allows local... Moderate Unreviewed

CVE-2022-33702 was published Jul 13, 2022

Improper permission control vulnerability in the Bluetooth module.Successful exploitation of this... Moderate Unreviewed

CVE-2021-40016 was published Jul 13, 2022

Under certain conditions SAP BusinessObjects Business Intelligence Platform 4.x - versions 420... Moderate Unreviewed

CVE-2022-29619 was published Jul 13, 2022

Microsoft Office Security Feature Bypass Vulnerability. Moderate Unreviewed

CVE-2022-33632 was published Jul 13, 2022

BitLocker Security Feature Bypass Vulnerability. Moderate Unreviewed

CVE-2022-22048 was published Jul 13, 2022

UnsafeAccessor 1.4.0 until 1.7.0 has no security checking for UnsafeAccess.getInstance() Moderate

CVE-2022-31139 was published for io.github.karlatemp:unsafe-accessor (Maven) Jul 12, 2022

The client in Northern.tech Mender 3.2.0, 3.2.1, and 3.2.2 has Incorrect Access Control. It... Moderate Unreviewed

CVE-2022-32290 was published Jul 7, 2022

Previous 1…27…54 Next

Previous 1 2 … 25 26 27 28 29 … 53 54 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,337 advisories