Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,790
Erlang
36
GitHub Actions
29
Go
2,370
Maven
5,000+
npm
3,994
NuGet
720
pip
3,783
Pub
12
RubyGems
927
Rust
982
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

100 advisories

Loading
The application fails to implement several security headers. These headers help increase the... Moderate Unreviewed
CVE-2025-49193 was published Jun 12, 2025
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a... Moderate Unreviewed
CVE-2025-47160 was published Jun 10, 2025
Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. When an attacker claims to... Moderate Unreviewed
CVE-2020-16198 was published May 24, 2022
Medtronic N'Vision Clinician Programmer 8840 N'Vision Clinician Programmer, all versions, and... Moderate Unreviewed
CVE-2018-10631 was published May 13, 2022
When a parent page loaded a child in an iframe with `unsafe-inline`, the parent Content Security... Moderate Unreviewed
CVE-2024-0747 was published Jan 23, 2024
Inappropriate implementation in Site Isolation in Google Chrome prior to 105.0.5195.52 allowed a... Moderate Unreviewed
CVE-2022-3044 was published Sep 27, 2022
Insufficient policy enforcement in Content Security Policy in Google Chrome prior to 105.0.5195... Moderate Unreviewed
CVE-2022-3056 was published Sep 27, 2022
In various functions of ap_input_processor.c, there is a possible way to record audio during a... Moderate Unreviewed
CVE-2022-20464 was published Oct 14, 2022
Inappropriate implementation in Autofill in Google Chrome prior to 121.0.6167.85 allowed a remote... Moderate Unreviewed
CVE-2024-0809 was published Jan 24, 2024
Proofpoint Enterprise Protection before 18.8.0 allows a Bypass of a Security Control. Moderate Unreviewed
CVE-2021-31608 was published Nov 18, 2022
Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format... Moderate Unreviewed
CVE-2024-29510 was published Jul 3, 2024
A logic issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.2,... Moderate Unreviewed
CVE-2022-42821 was published Dec 15, 2022
A logic issue was addressed with improved checks. This issue is fixed in Safari 16.2, tvOS 16.2,... Moderate Unreviewed
CVE-2022-46698 was published Dec 15, 2022
Insufficient fencing and checks in System Management Unit (SMU) may result in access to invalid... Moderate Unreviewed
CVE-2021-26355 was published Jan 11, 2023
Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to... Moderate Unreviewed
CVE-2025-27472 was published Apr 8, 2025
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a... Moderate Unreviewed
CVE-2025-26637 was published Apr 8, 2025
The SafeSocks option in Tor before 0.4.7.13 has a logic error in which the unsafe SOCKS4 protocol... Moderate Unreviewed
CVE-2023-23589 was published Jan 14, 2023
A logic issue was addressed with improved state management. This issue is fixed in tvOS 17.4,... Moderate Unreviewed
CVE-2024-23284 was published Mar 8, 2024
Inappropriate implementation in Site Isolation in Google Chrome prior to 122.0.6261.57 allowed a... Moderate Unreviewed
CVE-2024-1671 was published Feb 21, 2024
Insufficient policy enforcement in CORS in Google Chrome prior to 109.0.5414.74 allowed a remote... Moderate Unreviewed
CVE-2023-0141 was published Jan 10, 2023
Inappropriate implementation in in iframe Sandbox in Google Chrome prior to 109.0.5414.74 allowed... Moderate Unreviewed
CVE-2023-0131 was published Jan 10, 2023
By tricking the browser with a `X-Frame-Options` header, a sandboxed iframe could have presented... Moderate Unreviewed
CVE-2024-5691 was published Jun 11, 2024
Potential vulnerabilities have been identified in certain HP Desktop PC products using the HP... Moderate Unreviewed
CVE-2022-48219 was published Feb 15, 2024
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2023-28286 was published Apr 27, 2023
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2023-29354 was published May 6, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database