GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,972
Composer 4,285
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,238
npm 3,741
NuGet 668
pip 3,422
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,198

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

882 advisories

Filter by severity

Sort by

Least recently updated

In GeoVision GV-ADR2701 cameras, an attacker could edit the login response to access the web... Critical Unreviewed

CVE-2023-3638 was published Jul 19, 2023

SonicWall GMS and Analytics CAS Web Services application use static values for authentication... Critical Unreviewed

CVE-2023-34137 was published Jul 13, 2023

The authentication mechanism in SonicWall GMS and Analytics Web Services had insufficient checks,... Critical Unreviewed

CVE-2023-34124 was published Jul 13, 2023

The authentication mechanism in PowerShield SNMP Web Pro 1.1 contains a vulnerability that allows... Critical Unreviewed

CVE-2023-33274 was published Jul 12, 2023

An unauthenticated user could log into iSTAR Ultra, iSTAR Ultra LT, iSTAR Ultra G2, and iSTAR... Critical Unreviewed

CVE-2023-3127 was published Jul 12, 2023

Teltonika’s Remote Management System versions 4.14.0 is vulnerable to an unauthorized attacker... Critical Unreviewed

CVE-2023-2586 was published Jul 6, 2023

Teltonika’s Remote Management System versions prior to 4.10.0 use device serial numbers and MAC... Critical Unreviewed

CVE-2023-32347 was published Jul 6, 2023

Improper Authentication vulnerability in WPDeveloper Essential Addons for Elementor allows... Critical Unreviewed

CVE-2023-32243 was published Jul 6, 2023

Improper Authentication vulnerability in Easy Digital Downloads plugin allows unauth. Privilege... Critical Unreviewed

CVE-2023-30869 was published Jul 6, 2023

Improper Authentication vulnerability in B&R Industrial Automation B&R VC4 (VNC-Server modules). ... Critical Unreviewed

CVE-2023-1617 was published Jul 6, 2023

An authentication vulnerability was discovered in Jira Service Management Server and Data Center... Critical Unreviewed

CVE-2023-22501 was published Jul 6, 2023

The User Verification WordPress plugin before 1.0.94 was affected by an Auth Bypass security... Critical Unreviewed

CVE-2022-4693 was published Jul 6, 2023

D-Link DSL-G256DG version vBZ_1.00.27 web management interface allows authentication bypass via... Critical Unreviewed

CVE-2023-32222 was published Jun 28, 2023

pam_krb5 authenticates a user by essentially running kinit with the password, getting a ticket... Critical Unreviewed

CVE-2023-3326 was published Jun 22, 2023

Improper authentication vulnerability exists in KB-AHR series and KB-IRIP series. If this... Critical Unreviewed

CVE-2023-30762 was published Jun 13, 2023

A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions >= V1.17.3... Critical Unreviewed

CVE-2023-29129 was published Jun 13, 2023

Milesight NCR/camera version 71.8.0.6-r5 allows authentication bypass through an unspecified method. Critical Unreviewed

CVE-2023-32220 was published Jun 12, 2023

An issue in Planet Technologies WDRT-1800AX v1.01-CP21 allows attackers to bypass authentication... Critical Unreviewed

CVE-2023-33553 was published Jun 7, 2023

Improper authentication vulnerability in T&D Corporation and ESPEC MIC CORP. data logger products... Critical Unreviewed

CVE-2023-27388 was published May 23, 2023

The RegistrationMagic plugin for WordPress is vulnerable to authentication bypass in versions up... Critical Unreviewed

CVE-2023-2499 was published May 16, 2023

Use of Password Hash Instead of Password for Authentication in SICK FTMg AIR FLOW SENSOR with... Critical Unreviewed

CVE-2023-23450 was published May 15, 2023

An authentication bypass in Optoma 1080PSTX C02 allows an attacker to access the administration... Critical Unreviewed

CVE-2023-27823 was published May 12, 2023

An issue in the helper tool of Mailbutler GmbH Shimo VPN Client for macOS v5.0.4 allows attackers... Critical Unreviewed

CVE-2023-30328 was published May 4, 2023

OpenText BizManager before 16.6.0.1 does not perform proper validation during the change-password... Critical Unreviewed

CVE-2022-35898 was published May 1, 2023

This vulnerability exists in GajShield Data Security Firewall firmware versions prior to v4.28 ... Critical Unreviewed

CVE-2023-1778 was published Apr 27, 2023

Previous 1 2 3 4 5 6 7 8 … 35 36 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

882 advisories