Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

143 advisories

Loading
Corveda PHPSandbox Protection Mechanism Failure vulnerability Moderate
CVE-2014-125107 was published for corveda/phpsandbox (Composer) Dec 19, 2023
Protection mechanism failure in some Intel(R) Distribution of OpenVINO toolkit software before... Moderate Unreviewed
CVE-2023-25080 was published Nov 14, 2023
Protection mechanism failure in some Intel(R) oneAPI HPC Toolkit 2023.1 and Intel(R)MPI Library... Moderate Unreviewed
CVE-2023-27383 was published Nov 14, 2023
Protection mechanism failure in some Intel DCM software before version 5.2 may allow an... Critical Unreviewed
CVE-2023-31273 was published Nov 14, 2023
Mattermost Desktop fails to correctly handle permissions or prompt the user for consent on... Low Unreviewed
CVE-2023-5875 was published Nov 2, 2023
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously... High Unreviewed
CVE-2023-5557 was published Oct 13, 2023
A protection mechanism failure in Fortinet FortiWeb 7.2.0 through 7.2.1, 7.0.0 through 7.0.6, 6.4... High Unreviewed
CVE-2023-34984 was published Sep 13, 2023
Remote Code Execution in Custom Integration Upload High
CVE-2023-41319 was published for ethyca-fides (pip) Sep 7, 2023
grmpyninja
Protection Mechanism Failure in bc_tui trustlet from Samsung Blockchain Keystore prior to version... High Unreviewed
CVE-2023-30722 was published Sep 6, 2023
Dell PowerScale OneFS, 9.5.0.x, contains a protection mechanism bypass vulnerability. An... Critical Unreviewed
CVE-2023-32493 was published Aug 16, 2023
Protection mechanism failure in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM... High Unreviewed
CVE-2023-34427 was published Aug 11, 2023
Protection mechanism failure for some Intel(R) Arc(TM) graphics cards A770 and A750 sold between... Moderate Unreviewed
CVE-2022-41984 was published Aug 11, 2023
Protection mechanism failure for some Intel(R) PROSet/Wireless WiFi software may allow a... Moderate Unreviewed
CVE-2022-46329 was published Aug 11, 2023
A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered... High Unreviewed
CVE-2023-3089 was published Jul 5, 2023
A vulnerability has been identified in Totally Integrated Automation Portal (TIA Portal) V14 (All... Moderate Unreviewed
CVE-2023-30757 was published Jun 13, 2023
Potential HTTP policy bypass when using header rules in Cilium Moderate
CVE-2023-30851 was published for github.com/cilium/cilium (Go) May 22, 2023
Protection mechanism failure in the Intel(R) DCM software before version 5.1 may allow an... High Unreviewed
CVE-2022-41979 was published May 10, 2023
The Metform Elementor Contact Form Builder plugin for WordPress is vulnerable to reCaptcha Bypass... Moderate Unreviewed
CVE-2023-0085 was published Mar 2, 2023
Sandbox escape in Jenkins Email Extension Plugin Critical
CVE-2023-25765 was published for org.jenkins-ci.plugins:email-ext (Maven) Feb 15, 2023
User login brute force protection functionality bypass Critical Unreviewed
CVE-2022-27516 was published Nov 9, 2022
Jenkins Compuware Topaz for Total Test Plugin vulnerable to Protection Mechanism Failure High
CVE-2022-43429 was published for com.compuware.jenkins:compuware-topaz-for-total-test (Maven) Oct 19, 2022
Content-Security-Policy protection for user content disabled by Jenkins XFramium Builder Plugin High
CVE-2022-43432 was published for org.jenkins-ci.plugins:xframium (Maven) Oct 19, 2022
NotMyFault
Jenkins NUnit Plugin vulnerable to Protection Mechanism Failure Moderate
CVE-2022-43414 was published for org.jenkins-ci.plugins:nunit (Maven) Oct 19, 2022
Agent-to-controller security bypass vulnerability in Jenkins BMC Compuware Source Code Download for Endevor, PDS, and ISPW Plugin Moderate
CVE-2022-43423 was published for com.compuware.jenkins:compuware-scm-downloader (Maven) Oct 19, 2022
NotMyFault
Agent-to-controller security bypass vulnerabilities in Jenkins Compuware Topaz for Total Test Plugin High
CVE-2022-43428 was published for com.compuware.jenkins:compuware-topaz-for-total-test (Maven) Oct 19, 2022
NotMyFault
ProTip! Advisories are also available from the GraphQL API