GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,434
Composer 4,826
Erlang 36
GitHub Actions 32
Go 2,426
Maven 5,833
npm 4,058
NuGet 723
pip 3,848
Pub 12
RubyGems 934
Rust 1,006
Swift 38

Unreviewed advisories

All unreviewed 265,059

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,817 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper Access Control in GitHub repository janeczku/calibre-web prior to 0.6.16. Moderate Unreviewed

CVE-2022-0405 was published Apr 4, 2022

The Advanced Contact form 7 DB WordPress plugin before 1.8.7 does not have authorisation nor CSRF... High Unreviewed

CVE-2021-24905 was published Mar 22, 2022

Improper access control vulnerability in McAfee WebAdvisor Chrome and Edge browser extensions up... High Unreviewed

CVE-2022-0815 was published Mar 12, 2022

The public API error causes for the attacker to be able to bypass API access control. Critical Unreviewed

CVE-2022-23730 was published Mar 12, 2022

An Improper access control vulnerability in StRetailModeReceiver in Wear OS 3.0 prior to Firmware... Moderate Unreviewed

CVE-2022-24930 was published Mar 11, 2022

Improper access control vulnerability in BixbyTouch prior to version 2.2.00.6 in China models... Low Unreviewed

CVE-2022-25824 was published Mar 11, 2022

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23... Moderate Unreviewed

CVE-2022-26317 was published Mar 9, 2022

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23... High Unreviewed

CVE-2022-24309 was published Mar 9, 2022

The Custom Content Shortcode WordPress plugin before 4.0.2 does not validate the data passed to... Moderate Unreviewed

CVE-2021-24825 was published Mar 8, 2022

The [field] shortcode included with the Custom Content Shortcode WordPress plugin before 4.0.1,... Moderate Unreviewed

CVE-2021-24824 was published Mar 8, 2022

The Download Manager WordPress plugin before 3.2.35 does not have any authorisation checks in... High Unreviewed

CVE-2021-25087 was published Mar 8, 2022

Improper Access Control in GitHub repository salesagility/suitecrm prior to 7.12.5. Moderate Unreviewed

CVE-2022-0755 was published Mar 8, 2022

Improper Access Control to Remote Code Execution in GitHub repository webmin/webmin prior to 1.990. High Unreviewed

CVE-2022-0824 was published Mar 3, 2022

JFrog Artifactory before 7.31.10, is vulnerable to Broken Access Control where a project admin... Moderate Unreviewed

CVE-2021-46270 was published Mar 3, 2022

The Orange Form WordPress plugin through 1.0.1 does not have any authorisation and CSRF checks in... Moderate Unreviewed

CVE-2021-24688 was published Mar 1, 2022

The Logo Showcase with Slick Slider WordPress plugin before 1.2.5 does not have CSRF and... Moderate Unreviewed

CVE-2021-24730 was published Mar 1, 2022

The backend infrastructure shared by multiple mobile device monitoring services does not... High Unreviewed

CVE-2022-0732 was published Feb 25, 2022

The web interface of the 1734-AENTR communication module mishandles authentication for HTTP POST... Moderate Unreviewed

CVE-2020-14504 was published Feb 25, 2022

Improper access control vulnerability in Reminder prior to versions 12.3.01.3000 in Android S(12)... Moderate Unreviewed

CVE-2022-23433 was published Feb 12, 2022

An Improper access control vulnerability in StBedtimeModeReceiver in Wear OS 3.0 prior to... Moderate Unreviewed

CVE-2022-23994 was published Feb 12, 2022

An improper access control in LiveWallpaperService prior to versions 3.0.9.0 allows to create a... Moderate Unreviewed

CVE-2022-24924 was published Feb 12, 2022

Improper access control vulnerability in Samsung SearchWidget prior to versions 2.3.00.6 in China... Low Unreviewed

CVE-2022-24923 was published Feb 12, 2022

An Improper Access Control vulnerability exists in Citrix Workspace App for Linux 2012 - 2111... High Unreviewed

CVE-2022-21825 was published Feb 11, 2022

After the initial setup process, some steps of setup.php file are reachable not only by super... Moderate Unreviewed

CVE-2022-23134 was published Feb 9, 2022

The SupportCandy WordPress plugin before 2.2.5 does not have authorisation and CRSF checks in its... Moderate Unreviewed

CVE-2021-24839 was published Feb 8, 2022

Previous 1 2 … 109 110 111 112 113 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,817 advisories