GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,309
Composer 4,359
Erlang 33
GitHub Actions 22
Go 2,126
Maven 5,307
npm 3,787
NuGet 683
pip 3,467
Pub 12
RubyGems 894
Rust 892
Swift 38

Unreviewed advisories

All unreviewed 244,676

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,052 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor... Moderate Unreviewed

CVE-2022-45168 was published Jun 10, 2024

Broken Authentication vulnerability in SoftLab Integrate Google Drive.This issue affects... Moderate Unreviewed

CVE-2024-35670 was published Jun 4, 2024

Improper Authentication vulnerability in Pluggabl LLC Booster Elite for WooCommerce allows... Moderate Unreviewed

CVE-2023-51511 was published Jun 4, 2024

Improper Authentication vulnerability in Pluggabl LLC Booster for WooCommerce allows Accessing... Moderate Unreviewed

CVE-2023-48747 was published Jun 4, 2024

Improper Authentication vulnerability in WPMU DEV Defender Security allows Accessing... Moderate Unreviewed

CVE-2023-47189 was published Jun 4, 2024

An incorrect authentication vulnerability has been found in Socomec Net Vision affecting version... Moderate Unreviewed

CVE-2024-4601 was published May 7, 2024

Improper Authentication vulnerability in Secure Folder prior to SMR May-2024 Release 1 allows... Moderate Unreviewed

CVE-2024-20856 was published May 7, 2024

An issue was discovered in Archer Platform 6 before 2024.03. There is an X-Forwarded-For Header... Moderate Unreviewed

CVE-2024-34093 was published May 6, 2024

An issue discovered in Yealink VP59 Teams Editions with firmware version 91.15.0.118 allows a... Moderate Unreviewed

CVE-2024-30939 was published Apr 25, 2024

An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions... Moderate Unreviewed

CVE-2024-1347 was published Apr 25, 2024

Improper Authentication, Improper Neutralization of Input During Web Page Generation ('Cross-site... Moderate Unreviewed

CVE-2023-25790 was published Apr 24, 2024

Improper Authentication vulnerability in Repute Infosystems BookingPress allows Accessing... Moderate Unreviewed

CVE-2023-51405 was published Apr 24, 2024

A potential vulnerability was reported in the BIOS update tool driver for some Desktop, Smart... Moderate Unreviewed

CVE-2023-25493 was published Apr 5, 2024

VMware SD-WAN Edge contains a missing authentication and protection mechanism vulnerability. A... Moderate Unreviewed

CVE-2024-22247 was published Apr 2, 2024

REST service authentication anomaly with “valid username/no password” credential combination for... Moderate Unreviewed

CVE-2024-2244 was published Mar 27, 2024

Improper Authentication vulnerability in Melapress WP 2FA allows Authentication Bypass.This issue... Moderate Unreviewed

CVE-2022-44595 was published Mar 21, 2024

IBM DS8900F HMC 89.21.19.0, 89.21.31.0, 89.30.68.0, 89.32.40.0, and 89.33.48.0 could allow a... Moderate Unreviewed

CVE-2023-46172 was published Mar 7, 2024

A vulnerability in Cisco Duo Authentication for Windows Logon and RDP could allow an... Moderate Unreviewed

CVE-2024-20301 was published Mar 6, 2024

An unauthorized attacker who has obtained an IBM Watson IoT Platform 1.0 security authentication... Moderate Unreviewed

CVE-2023-38372 was published Feb 29, 2024

Improper access control vulnerability has been identified in the SMA100 SSL-VPN virtual office... Moderate Unreviewed

CVE-2024-22395 was published Feb 24, 2024

The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a... Moderate Unreviewed

CVE-2023-52160 was published Feb 22, 2024

Improper authentication in some Zoom clients may allow a privileged user to conduct a disclosure... Moderate Unreviewed

CVE-2024-24698 was published Feb 14, 2024

Sensitive data can be extracted from HID iCLASS SE reader configuration cards. This could... Moderate Unreviewed

CVE-2024-23806 was published Feb 7, 2024

An improper authentication vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed

CVE-2023-39303 was published Feb 2, 2024

IBM PowerSC 1.3, 2.0, and 2.1 uses single-factor authentication which can lead to unnecessary... Moderate Unreviewed

CVE-2023-50934 was published Feb 2, 2024

Previous 1 2 3 4 5 … 42 43 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,052 advisories