Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,347
Erlang
31
GitHub Actions
22
Go
2,117
Maven
5,000+
npm
3,768
NuGet
680
pip
3,457
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

143 advisories

Loading
Click Studios Passwordstate Core before 9.8 build 9858 allows Authentication Bypass. Moderate Unreviewed
CVE-2024-39337 was published Jun 24, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2024-30058 was published Jun 13, 2024
An issue in Annonshop.app DecentralizeJustice/ anonymousLocker commit 2b2b4 allows attackers to... Moderate Unreviewed
CVE-2024-36588 was published Jun 13, 2024
Authentication Bypass by Spoofing vulnerability in FeedbackWP Rate my Post – WP Rating System... Moderate Unreviewed
CVE-2023-51667 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in miniorange Malware Scanner allows Accessing... Moderate Unreviewed
CVE-2023-52176 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in WPMU DEV Branda allows Accessing Functionality... Moderate Unreviewed
CVE-2023-51542 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in Metagauss RegistrationMagic allows Accessing... Moderate Unreviewed
CVE-2023-51543 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in yonifre Maspik – Spam blacklist allows... Moderate Unreviewed
CVE-2023-48271 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in 10up Restricted Site Access allows Accessing... Moderate Unreviewed
CVE-2023-48753 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in pluginkollektiv Antispam Bee allows Accessing... Moderate Unreviewed
CVE-2023-41134 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in IP2Location Download IP2Location Country... Moderate Unreviewed
CVE-2023-37865 was published Jun 4, 2024
Multiple Cisco products are affected by a vulnerability in the Snort Intrusion Prevention System ... Moderate Unreviewed
CVE-2024-20363 was published May 22, 2024
Authentication Bypass by Spoofing vulnerability in RafflePress Giveaways and Contests allows... Moderate Unreviewed
CVE-2024-32827 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in WP Royal Royal Elementor Addons allows... Moderate Unreviewed
CVE-2024-32786 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in webtechideas WTI Like Post allows... Moderate Unreviewed
CVE-2024-33917 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in LionScripts IP Blocker Lite allows... Moderate Unreviewed
CVE-2024-30479 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in WP Happy Coders Comments Like Dislike allows... Moderate Unreviewed
CVE-2024-25906 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in Stefano Lissa & The Newsletter Team Newsletter... Moderate Unreviewed
CVE-2024-30522 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in Wpmet Wp Ultimate Review allows Functionality... Moderate Unreviewed
CVE-2024-21746 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in WPMU DEV Defender Security allows... Moderate Unreviewed
CVE-2024-25595 was published May 17, 2024
An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a... Moderate Unreviewed
CVE-2024-34397 was published May 7, 2024
IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 is vulnerable to external service interaction... Moderate Unreviewed
CVE-2022-22364 was published May 3, 2024
TP-Link TL-WR841N dropbearpwd Improper Authentication Information Disclosure Vulnerability. This... Moderate Unreviewed
CVE-2023-50224 was published May 3, 2024
TP-Link TL-WR902AC loginFs Improper Authentication Information Disclosure Vulnerability. This... Moderate Unreviewed
CVE-2023-44447 was published May 3, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions... Moderate Unreviewed
CVE-2024-1347 was published Apr 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database