GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,960
Composer 4,279
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,421
Pub 12
RubyGems 891
Rust 873
Swift 36

Unreviewed advisories

All unreviewed 238,854

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

206 advisories

Filter by severity

Sort by

Least recently updated

An origin validation vulnerability exists in BIG-IP APM browser network access VPN client ... High Unreviewed

CVE-2024-28883 was published May 8, 2024

A vulnerability exists in the too permissive HTTP response header web server settings of the... High Unreviewed

CVE-2024-2377 was published Apr 30, 2024

Brocade Web Interface in Brocade Fabric OS v9.x and before v9.2.0 does not properly represent... Moderate Unreviewed

CVE-2023-5973 was published Apr 5, 2024

The Kossy module before 0.60 for Perl allows JSON hijacking because of X-Requested-With mishandling. Critical Unreviewed

CVE-2021-47157 was published Mar 18, 2024

A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between... Moderate Unreviewed

CVE-2024-2182 was published Mar 12, 2024

An unauthenticated remote attacker can perform a remote code execution due to an origin... Moderate Unreviewed

CVE-2024-25996 was published Mar 12, 2024

IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 could be vulnerable to information leakage due to... Moderate Unreviewed

CVE-2023-30996 was published Feb 26, 2024

An improper verification vulnerability in the GlobalProtect gateway feature of Palo Alto Networks... Moderate Unreviewed

CVE-2024-0009 was published Feb 14, 2024

An unauthenticated attacker can send a ping request from one network to another through an error... Moderate Unreviewed

CVE-2024-24782 was published Feb 13, 2024

A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker... High Unreviewed

CVE-2023-40547 was published Jan 25, 2024

Incorrect security UI in Payments in Google Chrome prior to 121.0.6167.85 allowed a remote... Moderate Unreviewed

CVE-2024-0814 was published Jan 24, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47199 was published Jan 23, 2024

A plug-in manager origin validation vulnerability in the Trend Micro Apex One security agent... High Unreviewed

CVE-2023-47200 was published Jan 23, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47198 was published Jan 23, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47196 was published Jan 23, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47193 was published Jan 23, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47197 was published Jan 23, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47195 was published Jan 23, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47194 was published Jan 23, 2024

A phishing site could have repurposed an `about:` dialog to show phishing content with an... Moderate Unreviewed

CVE-2024-0749 was published Jan 23, 2024

A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA)... Moderate Unreviewed

CVE-2023-20275 was published Dec 12, 2023

Origin Validation Error vulnerability in Zscaler Client Connector on Linux allows Privilege Abuse... Moderate Unreviewed

CVE-2023-28794 was published Nov 6, 2023

Incorrect security UI in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote... Moderate Unreviewed

CVE-2023-5853 was published Nov 1, 2023

Incorrect security UI in Picture In Picture in Google Chrome prior to 119.0.6045.105 allowed a... Moderate Unreviewed

CVE-2023-5859 was published Nov 1, 2023

Inappropriate implementation in Downloads in Google Chrome prior to 119.0.6045.105 allowed a... Moderate Unreviewed

CVE-2023-5851 was published Nov 1, 2023

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

206 advisories