GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,755
Composer 4,856
Erlang 36
GitHub Actions 36
Go 2,488
Maven 5,911
npm 4,104
NuGet 735
pip 3,923
Pub 12
RubyGems 945
Rust 1,017
Swift 39

Unreviewed advisories

All unreviewed 268,387

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

388 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Insecure Permissions vulnerability in Sichuan Tianyi Kanghe Communication Co., Ltd China Telecom... Moderate Unreviewed

CVE-2023-41010 was published Sep 14, 2023

IBM Sterling Secure Proxy and IBM Sterling External Authentication Server 6.0.3 and 6.1.0 stores... Moderate Unreviewed

CVE-2023-32338 was published Sep 5, 2023

A pass-back vulnerability exists where an authenticated, remote attacker with administrator... Moderate Unreviewed

CVE-2023-3251 was published Aug 29, 2023

Incorrect access control in Zoho ManageEngine ADManager Plus Build 7180 allows unauthenticated... Moderate Unreviewed

CVE-2023-31492 was published Aug 18, 2023

Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys... Moderate Unreviewed

CVE-2023-4327 was published Aug 15, 2023

Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys... Moderate Unreviewed

CVE-2023-4328 was published Aug 15, 2023

Insufficient policy enforcement in Intents in Google Chrome on Android prior to 109.0.5414.119... Moderate Unreviewed

CVE-2022-4926 was published Jul 29, 2023

An issue was discovered in Keeper Password Manager for Desktop version 16.10.2, and the... Moderate Unreviewed

CVE-2023-36266 was published Jul 12, 2023

HPE OneView for VMware vCenter, in certain circumstances, may disclose the “HPE OneView” Username... Moderate Unreviewed

CVE-2022-37935 was published Jul 6, 2023

Insufficiently Protected Credentials: An authenticated user with debug privileges can retrieve... Moderate Unreviewed

CVE-2022-28291 was published Jul 6, 2023

An issue was discovered in the C AMQP client library (aka rabbitmq-c) through 0.13.0 for RabbitMQ... Moderate Unreviewed

CVE-2023-35789 was published Jun 16, 2023

GL.iNET GL-AR750S-Ext firmware v3.215 uses an insecure protocol in its communications which... Moderate Unreviewed

CVE-2023-33620 was published Jun 13, 2023

The AES Key-IV pair used by the TP-Link TAPO C200 camera V3 (EU) on firmware version 1.1.22 Build... Moderate Unreviewed

CVE-2023-27126 was published Jun 6, 2023

Avaya IX Workforce Engagement v15.2.7.1195 - CWE-522: Insufficiently Protected Credentials Moderate Unreviewed

CVE-2023-31187 was published May 30, 2023

Canon IJ Network Tool/Ver.4.7.5 and earlier (supported OS: OS X 10.9.5-macOS 13),IJ Network Tool... Moderate Unreviewed

CVE-2023-1763 was published May 17, 2023

An Information disclosure vulnerability in /be/rpc.php in Jedox GmbH Jedox 2020.2.5 allow remote,... Moderate Unreviewed

CVE-2022-47880 was published May 12, 2023

Insufficiently protected credentials in the Intel(R) DCM software before version 5.0.1 may allow... Moderate Unreviewed

CVE-2022-40685 was published May 10, 2023

SAP BusinessObjects Platform - versions 420, 430, Information design tool transmits sensitive... Moderate Unreviewed

CVE-2023-28764 was published May 9, 2023

An insufficiently protected credentials vulnerability [CWE-522] in FortiNAC-F 7.2.0, FortiNAC 9.4... Moderate Unreviewed

CVE-2022-45859 was published May 4, 2023

A valid, authenticated administrative user can query a web interface API to reveal the configured... Moderate Unreviewed

CVE-2023-25495 was published Apr 29, 2023

HPE OneView and HPE OneView Global Dashboard appliance dumps may expose authentication tokens Moderate Unreviewed

CVE-2023-28084 was published Apr 25, 2023

An HPE OneView appliance dump may expose OneView user accounts Moderate Unreviewed

CVE-2023-28087 was published Apr 25, 2023

An HPE OneView appliance dump may expose proxy credential settings Moderate Unreviewed

CVE-2023-28086 was published Apr 25, 2023

An HPE OneView appliance dump may expose SNMPv3 read credentials Moderate Unreviewed

CVE-2023-28090 was published Apr 25, 2023

Information disclosure in the user creation feature of a MSSQL data source in Devolutions Remote... Moderate Unreviewed

CVE-2023-1574 was published Apr 2, 2023

Previous 1…5…16 Next

Previous 1 2 3 4 5 6 7 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

388 advisories