Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,337 advisories

Loading
Operation restriction bypass vulnerability in Bulletin of Cybozu Garoon 4.0.0 to 5.5.1 allow a... Moderate Unreviewed
CVE-2022-28718 was published Jul 5, 2022
Operation restriction bypass vulnerability in Workflow of Cybozu Garoon 4.0.0 to 5.5.1 allows a... Moderate Unreviewed
CVE-2022-27661 was published Jul 5, 2022
An improper authorization vulnerability in GitLab EE/CE affecting all versions from 14.8 prior to... Moderate Unreviewed
CVE-2022-2244 was published Jul 2, 2022
An access control vulnerability in GitLab EE/CE affecting all versions from 14.8 prior to 14.10.5... Moderate Unreviewed
CVE-2022-2243 was published Jul 2, 2022
MyAdmin v1.0 is affected by an incorrect access control vulnerability in viewing personal center... Moderate Unreviewed
CVE-2021-37791 was published Jul 1, 2022
Incorrect Authorization in Jenkins Request Rename Or Delete Plugin Moderate
CVE-2022-34814 was published for org.jenkins-ci.plugins:rrod (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
Incorrect Authorization in Jenkins requests-plugin Moderate
CVE-2022-34782 was published for org.jenkins-ci.plugins:requests (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
In Nagios XI through 5.8.5, it is possible for a user without password verification to change his... Moderate Unreviewed
CVE-2022-29270 was published Jun 30, 2022
NT auth module vulnerability in OpenAM Moderate
CVE-2022-34298 was published for org.openidentityplatform.openam:openam-core (Maven) Jun 24, 2022
Improper authorization in Jenkins Embeddable Build Status Plugin bypasses ViewStatus permission requirement Moderate
CVE-2022-34180 was published for org.jenkins-ci.plugins:embeddable-build-status (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
netgear wnap320 router WNAP320_V2.0.3_firmware is vulnerable to Incorrect Access Control via ... Moderate Unreviewed
CVE-2022-31876 was published Jun 18, 2022
Zooms On-Premise Meeting Connector MMR before version 4.8.113.20220526 fails to properly check... Moderate Unreviewed
CVE-2022-28749 was published Jun 16, 2022
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The... Moderate Unreviewed
CVE-2022-32259 was published Jun 15, 2022
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The... Moderate Unreviewed
CVE-2022-32255 was published Jun 15, 2022
Incorrect Authorization in thinkcmf Moderate
CVE-2021-40616 was published for thinkcmf/thinkcmf (Composer) Jun 15, 2022
Due to improper authorization check, business users who are using Israeli File from SHAAM program... Moderate Unreviewed
CVE-2022-31589 was published Jun 15, 2022
Improper access control vulnerability in Quick Share prior to version 13.1.2.4 allows attacker to... Moderate Unreviewed
CVE-2022-30745 was published Jun 8, 2022
Improper authorization in Samsung Pass prior to 1.0.00.33 allows physical attackers to acess... Moderate Unreviewed
CVE-2022-30730 was published Jun 8, 2022
Incorrect authorization in GitLab EE affecting all versions from 12.0 before 14.9.5, all versions... Moderate Unreviewed
CVE-2022-1936 was published Jun 7, 2022
Incorrect authorization in GitLab EE affecting all versions from 12.0 before 14.9.5, all versions... Moderate Unreviewed
CVE-2022-1935 was published Jun 7, 2022
Access control issue in AlekSIS-Core Moderate
CVE-2022-29773 was published for aleksis-core (pip) Jun 4, 2022
Couchbase Server before 7.1.0 has Incorrect Access Control. Moderate Unreviewed
CVE-2021-33504 was published Jun 3, 2022
This issue was addressed with improved checks to prevent unauthorized actions. This issue is... Moderate Unreviewed
CVE-2022-22663 was published May 27, 2022
This issue was addressed with improved checks. This issue is fixed in Security Update 2022-003... Moderate Unreviewed
CVE-2022-22616 was published May 27, 2022
The issue was addressed with additional permissions checks. This issue is fixed in macOS Monterey... Moderate Unreviewed
CVE-2022-26767 was published May 27, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database