GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,120
Composer 4,800
Erlang 36
GitHub Actions 29
Go 2,380
Maven 5,718
npm 4,005
NuGet 720
pip 3,805
Pub 12
RubyGems 927
Rust 986
Swift 38

Unreviewed advisories

All unreviewed 262,530

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

57 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall... Moderate Unreviewed

CVE-2023-35838 was published Aug 10, 2023

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with... Moderate Unreviewed

CVE-2023-37856 was published Aug 9, 2023

In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with... Moderate Unreviewed

CVE-2023-37855 was published Aug 9, 2023

A vulnerability exists in Palo Alto Networks PAN-OS software that enables an authenticated... Moderate Unreviewed

CVE-2023-38046 was published Jul 12, 2023

A file disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated... Moderate Unreviewed

CVE-2023-0008 was published May 10, 2023

A vulnerability has been found in SourceCodester Student Study Center Desk Management System 1.0... Moderate Unreviewed

CVE-2023-2152 was published Apr 18, 2023

A file disclosure vulnerability in the Palo Alto Networks Cortex XSOAR server software enables an... Moderate Unreviewed

CVE-2023-0003 was published Feb 8, 2023

When receiving an HTML email that contained an <code>iframe</code> element, which used a <code... Moderate Unreviewed

CVE-2022-3032 was published Dec 22, 2022

In onPreferenceClick of AccountTypePreferenceLoader.java, there is a possible way to retrieve... Moderate Unreviewed

CVE-2022-20515 was published Dec 20, 2022

In multiple locations of NfcService.java, there is a possible disclosure of NFC tags due to a... Moderate Unreviewed

CVE-2022-20199 was published Dec 20, 2022

ILIAS before 7.16 allows External Control of File Name or Path. Moderate Unreviewed

CVE-2022-45918 was published Dec 7, 2022

The WordPress Infinite Scroll – Ajax Load More plugin for Wordpress is vulnerable to arbitrary... Moderate Unreviewed

CVE-2022-2943 was published Sep 7, 2022

The Export All URLs WordPress plugin before 4.4 does not validate the path of the file to be... Moderate Unreviewed

CVE-2022-2638 was published Aug 29, 2022

An information disclosure vulnerability exists in the aVideoEncoderReceiveImage functionality of... Moderate Unreviewed

CVE-2022-32761 was published Aug 23, 2022

An information disclosure vulnerability exists in the chunkFile functionality of WWBN AVideo 11.6... Moderate Unreviewed

CVE-2022-28710 was published Aug 23, 2022

A vulnerability, which was classified as problematic, was found in FileZilla Server up to 0.9.50.... Moderate Unreviewed

CVE-2015-10003 was published Jul 18, 2022

Honeywell Alerton Compass Software 1.6.5 allows unauthenticated configuration changes from remote... Moderate Unreviewed

CVE-2022-30245 was published Jul 16, 2022

An arbitrary file deletion vulnerability exists within Maccms10. Moderate Unreviewed

CVE-2020-21363 was published May 24, 2022

A vulnerability in all versions of Nim-lang allows unauthenticated attackers to write files to... Moderate Unreviewed

CVE-2020-23171 was published May 24, 2022

In scheduleTimeoutLocked of NotificationRecord.java, there is a possible disclosure of a... Moderate Unreviewed

CVE-2021-0599 was published May 24, 2022

A malicious website that causes an HTTP Authentication dialog to be spawned could trick the built... Moderate Unreviewed

CVE-2021-29965 was published May 24, 2022

A frame-injection issue in the online help in Redwood Report2Web 4.3.4.5 allows remote attackers... Moderate Unreviewed

CVE-2021-26711 was published May 24, 2022

In AccountManager, there is a possible bypass of a permissions check due to a confused deputy.... Moderate Unreviewed

CVE-2020-0338 was published May 24, 2022

In MediaProvider, there is a possible bypass of a permissions check due to a confused deputy.... Moderate Unreviewed

CVE-2020-0337 was published May 24, 2022

Information Disclosure is possible on WAGO Series PFC100 and PFC200 devices before FW12 due to... Moderate Unreviewed

CVE-2019-18202 was published May 24, 2022

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

57 advisories