GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,536

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

222 advisories

Filter by severity

Sort by

Least recently updated

When exiting fullscreen mode, an iframe could have confused the browser about the current state... Moderate Unreviewed

CVE-2022-31738 was published Dec 22, 2022

HomeAutomation 3.3.2 suffers from an authentication bypass vulnerability when spoofing client IP... Critical Unreviewed

CVE-2020-22001 was published May 24, 2022

IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.7 and Open Liberty are... High Unreviewed

CVE-2022-22476 was published Jul 9, 2022

The authentication mechanism used by technicians on the tested version of Dominion Voting Systems... High Unreviewed

CVE-2022-1745 was published Jun 25, 2022

Knot Resolver through 5.5.1 may allow DNS cache poisoning when there is an attempt to limit... Moderate Unreviewed

CVE-2022-32983 was published Jun 21, 2022

Incorrect security UI in Downloads in Google Chrome on Android prior to 101.0.4951.41 allowed a... Moderate Unreviewed

CVE-2022-1495 was published Jul 27, 2022

Inappropriate implementation in full screen in Google Chrome on Android prior to 100.0.4896.88... Moderate Unreviewed

CVE-2022-1307 was published Jul 26, 2022

Inappropriate implementation in compositing in Google Chrome prior to 100.0.4896.88 allowed a... Moderate Unreviewed

CVE-2022-1306 was published Jul 26, 2022

Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 100.0.4896... Moderate Unreviewed

CVE-2022-1129 was published Jul 24, 2022

Improperly Implemented Security Check vulnerability in the SonicWall Hosted Email Security leads... High Unreviewed

CVE-2022-2324 was published Jul 30, 2022

An authentication bypass vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.12, 9.x... Critical Unreviewed

CVE-2022-2310 was published Jul 28, 2022

An exploitable vulnerability exists in the WiFi management of Circle with Disney. A crafted... Moderate Unreviewed

CVE-2017-12096 was published May 13, 2022

OpenDMARC through 1.3.2 and 1.4.x, when used with pypolicyd-spf 2.0.2, allows attacks that bypass... Moderate Unreviewed

CVE-2019-20790 was published May 24, 2022

Multiple Wiesemann&Theis products of the ComServer Series are prone to an authentication bypass... High Unreviewed

CVE-2022-4098 was published Dec 13, 2022

Inappropriate implementation in navigation in Google Chrome on iOS prior to 78.0.3904.70 allowed... Moderate Unreviewed

CVE-2019-13708 was published May 24, 2022

Insufficient policy enforcement in the Omnibox in Google Chrome on Android prior to 78.0.3904.70... Moderate Unreviewed

CVE-2019-13703 was published May 24, 2022

Insufficient policy enforcement in navigation in Google Chrome prior to 78.0.3904.70 allowed a... Moderate Unreviewed

CVE-2019-13704 was published May 24, 2022

Incorrect implementation in navigation in Google Chrome prior to 78.0.3904.70 allowed a remote... Moderate Unreviewed

CVE-2019-13701 was published May 24, 2022

Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 78.0.3904.70... Moderate Unreviewed

CVE-2019-13715 was published May 24, 2022

An authentication bypass vulnerability in the Palo Alto Networks PAN-OS 8.1 web interface allows... High Unreviewed

CVE-2022-0030 was published Oct 12, 2022

Insufficient policy enforcement in downloads in Google Chrome prior to 78.0.3904.70 allowed a... Moderate Unreviewed

CVE-2019-13709 was published May 24, 2022

A CWE-290: Authentication Bypass by Spoofing vulnerability exists in all versions of the Modicon... Critical Unreviewed

CVE-2018-7842 was published May 24, 2022

An authentication bypass vulnerability in the Juniper Networks Paragon Active Assurance Control... High Unreviewed

CVE-2021-0232 was published May 24, 2022

Improperly implemented security check in McAfee MVISION Endpoint Detection and Response Client ... Moderate Unreviewed

CVE-2020-7327 was published May 24, 2022

IBM Resilient SOAR V38.0 could allow an attacker on the internal net work to provide the server... Moderate Unreviewed

CVE-2020-4864 was published May 24, 2022

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

222 advisories