GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,787
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,016
Maven 5,202
npm 3,721
NuGet 662
pip 3,400
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,207

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,033 advisories

Filter by severity

Sort by

Least recently updated

Navigating to a specific URL with a patient ID number will result in the server generating a PDF... Moderate Unreviewed

CVE-2022-1067 was published Apr 12, 2022

Improper access control vulnerability in Knox Manage prior to SMR Apr-2022 Release 1 allows that... Moderate Unreviewed

CVE-2022-26091 was published Apr 12, 2022

Improper authentication vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical... Moderate Unreviewed

CVE-2022-25832 was published Apr 12, 2022

Improper access control vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical... Moderate Unreviewed

CVE-2022-25831 was published Apr 12, 2022

Improper authentication vulnerability in SecretMode in Samsung Internet prior to version 16.2.1... Moderate Unreviewed

CVE-2022-27839 was published Apr 12, 2022

Improper authorization in GitLab Pages included with GitLab CE/EE affecting all versions from 11... Moderate Unreviewed

CVE-2022-1148 was published Apr 5, 2022

Wyse Device Agent version 14.6.1.4 and below contain an Improper Authentication vulnerability. A... Moderate Unreviewed

CVE-2022-23156 was published Apr 2, 2022

Vivoh Webinar Manager before 3.6.3.0 has improper API authentication. When a user logs in to the... Moderate Unreviewed

CVE-2021-45900 was published Apr 1, 2022

An issue has been discovered in GitLab CE/EE affecting versions 13.0 to 14.6.5, 14.7 to 14.7.4,... Moderate Unreviewed

CVE-2021-4191 was published Mar 29, 2022

A lack of password change protection vulnerability in a depreciated API of McAfee Enterprise... Moderate Unreviewed

CVE-2022-0862 was published Mar 24, 2022

Improper authentication in Samsung Lock and mask apps setting prior to SMR Mar-2022 Release 1... Moderate Unreviewed

CVE-2022-25816 was published Mar 11, 2022

Improper access control vulnerability in Samsung Account prior to version 13.1.0.1 allows... Moderate Unreviewed

CVE-2022-25825 was published Mar 11, 2022

Improper Access Control in GitHub repository salesagility/suitecrm prior to 7.12.5. Moderate Unreviewed

CVE-2022-0755 was published Mar 8, 2022

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.6.0 are susceptible to a... Moderate Unreviewed

CVE-2022-23232 was published Mar 5, 2022

The biometric lock in Devolutions Password Hub for iOS before 2021.3.4 allows attackers to access... Moderate Unreviewed

CVE-2022-23849 was published Mar 4, 2022

The web interface of the 1734-AENTR communication module mishandles authentication for HTTP POST... Moderate Unreviewed

CVE-2020-14504 was published Feb 25, 2022

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this... Moderate Unreviewed

CVE-2016-2124 was published Feb 19, 2022

An authorization bypass exploited by a user-controlled key in SpecificApps REST API in... Moderate Unreviewed

CVE-2021-46249 was published Feb 17, 2022

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated... Moderate Unreviewed

CVE-2021-43950 was published Feb 16, 2022

Microsoft SharePoint Server Security Feature BypassVulnerability. Moderate Unreviewed

CVE-2022-21968 was published Feb 10, 2022

After the initial setup process, some steps of setup.php file are reachable not only by super... Moderate Unreviewed

CVE-2022-23134 was published Feb 9, 2022

Hitachi Energy LinkOne product, has a vulnerability due to a web server misconfiguration, that... Moderate Unreviewed

CVE-2021-40338 was published Jan 29, 2022

Fresenius Kabi Agilia Link + version 3.0 has a default configuration page accessible without... Moderate Unreviewed

CVE-2021-33843 was published Jan 22, 2022

Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to... Moderate Unreviewed

CVE-2022-22284 was published Jan 11, 2022

Improper access control vulnerability in S Assistant prior to version 7.5 allows attacker to... Moderate Unreviewed

CVE-2022-22289 was published Jan 11, 2022

Previous 1 2 … 38 39 40 41 42 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,033 advisories