GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,576

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

228 advisories

Filter by severity

Sort by

Least recently updated

BMC Server Automation before 8.9.01 patch 1 allows Process Spawner command execution because of... Critical Unreviewed

CVE-2017-9453 was published Sep 5, 2023

A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and... Critical Unreviewed

CVE-2023-38035 was published Aug 21, 2023

The Linux DVS server component of Mitel MiVoice Connect through 19.3 SP2 (22.24.1500.0) could... Critical Unreviewed

CVE-2023-32748 was published Aug 14, 2023

KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 exhibit a... Critical Unreviewed

CVE-2023-33468 was published Aug 9, 2023

** UNSUPPORTED WHEN ASSIGNED ** Authentication Bypass vulnerability in D-Link DIR-895 FW102b07... Critical Unreviewed

CVE-2023-36091 was published Jul 31, 2023

** UNSUPPORTED WHEN ASSIGNED ** Authentication Bypass vulnerability in D-Link DIR-885L FW102b01... Critical Unreviewed

CVE-2023-36090 was published Jul 31, 2023

** UNSUPPORTED WHEN ASSIGNED ** Authentication Bypass vulnerability in D-Link DIR-645 firmware... Critical Unreviewed

CVE-2023-36089 was published Jul 31, 2023

** UNSUPPORTED WHEN ASSIGNED ** Authentication Bypass vulnerability in D-Link DIR-859 FW105b03... Critical Unreviewed

CVE-2023-36092 was published Jul 31, 2023

Sourcecodester Online Computer and Laptop Store 1.0 is vulnerable to Incorrect Access Control,... Critical Unreviewed

CVE-2023-31704 was published Jul 13, 2023

In TravianZ 8.3.4 and 8.3.3, Incorrect Access Control in the installation script allows an... Critical Unreviewed

CVE-2023-36994 was published Jul 7, 2023

Franklin Fueling System FFS Colibri 1.9.22.8925 is affected by: File system overwrite. The impact... Critical Unreviewed

CVE-2022-44039 was published Jul 6, 2023

An issue in Zimbra Collaboration (ZCS) v.8.8.15 and v.9.0 allows a remote attacker to escalate... Critical Unreviewed

CVE-2023-29381 was published Jul 6, 2023

Nexxt Nebula 1200-AC 15.03.06.60 allows authentication bypass and command execution by using the... Critical Unreviewed

CVE-2022-46080 was published Jul 6, 2023

Vulnerability of incomplete read and write permission verification in the GPU module. Successful... Critical Unreviewed

CVE-2021-46891 was published Jul 5, 2023

Vulnerability of incomplete read and write permission verification in the GPU module. Successful... Critical Unreviewed

CVE-2021-46890 was published Jul 5, 2023

Arcserve UDP through 9.0.6034 allows authentication bypass. The method getVersionInfo at... Critical Unreviewed

CVE-2023-26258 was published Jul 3, 2023

UniFi OS 3.1 introduces a misconfiguration on consoles running UniFi Network that allows users on... Critical Unreviewed

CVE-2023-31997 was published Jul 1, 2023

Wade Graphic Design FANTSY has a vulnerability of insufficient authorization check. An... Critical Unreviewed

CVE-2023-28698 was published Jun 2, 2023

In JetBrains TeamCity before 2023.05 bypass of permission checks allowing to perform admin... Critical Unreviewed

CVE-2023-34218 was published May 31, 2023

This vulnerability exists in Milesight 4K/H.265 Series NVR models (MS-Nxxxx-xxG, MS-Nxxxx-xxE, MS... Critical Unreviewed

CVE-2023-30467 was published Apr 28, 2023

Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue... Critical Unreviewed

CVE-2023-30771 was published Apr 17, 2023

An authentication bypass vulnerability in the web client interface for the CL4NX printer before... Critical Unreviewed

CVE-2023-23594 was published Mar 31, 2023

An authentication bypass vulnerability in the Password Reset component of Gladinet CentreStack... Critical Unreviewed

CVE-2023-26829 was published Mar 31, 2023

Incorrect authorization in OMICRON StationGuard 1.10 through 2.20 and StationScout 1.30 through 2... Critical Unreviewed

CVE-2023-28611 was published Mar 23, 2023

A piece of Huawei whole-home intelligence software has an Incorrect Privilege Assignment... Critical Unreviewed

CVE-2022-48283 was published Feb 27, 2023

Previous 1 2 3 4 5 … 9 10 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

228 advisories