Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,269 advisories

Loading
OpenStack Identity Keystone Improper Access Control Moderate
CVE-2016-4911 was published for keystone (pip) May 17, 2022
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Access... High Unreviewed
CVE-2024-34099 was published May 15, 2024
MediaWiki Incorrect Access Control vulnerability Moderate
CVE-2019-12467 was published for mediawiki/core (Composer) May 24, 2022
Wikimedia MediaWiki Incorrect Access Control vulnerability Critical
CVE-2019-12468 was published for mediawiki/core (Composer) May 24, 2022
MediaWiki Incorrect Access Control vulnerability Moderate
CVE-2019-12469 was published for mediawiki/core (Composer) May 24, 2022
Wikimedia MediaWik exposed suppressed log in RevisionDelete page Moderate
CVE-2019-12470 was published for mediawiki/core (Composer) May 24, 2022
Mediawiki tarball is missing .htaccess files Moderate
CVE-2018-13258 was published for mediawiki/core (Composer) May 14, 2022
MLflow allows low privilege users to delete any artifact Moderate
CVE-2024-4263 was published for mlflow (pip) May 16, 2024
Improper access control for some Intel(R) Thunderbolt driver software before version 89 may allow... High Unreviewed
CVE-2022-37410 was published May 16, 2024
Improper access control in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225... High Unreviewed
CVE-2022-37341 was published May 16, 2024
Improper access control in some Intel(R) GPA software installers before version 2023.3 may allow... High Unreviewed
CVE-2023-40071 was published May 16, 2024
Improper access control for some Intel(R) CST software before version 2.1.10300 may allow an... Moderate Unreviewed
CVE-2023-39433 was published May 16, 2024
Improper access control in some Intel(R) GPA Framework software installers before version 2023.3... High Unreviewed
CVE-2023-43748 was published May 16, 2024
Improper access control in some Intel(R) CST before version 2.1.10300 may allow an authenticated... Moderate Unreviewed
CVE-2023-43487 was published May 16, 2024
Improper access control in some Intel(R) Ethernet Controller Administrative Tools software before... Moderate Unreviewed
CVE-2024-21828 was published May 16, 2024
Improper access control for some Intel(R) Wireless Bluetooth products for Windows before version... Moderate Unreviewed
CVE-2023-47859 was published May 16, 2024
An Improper Access Control vulnerability exists in lunary-ai/lunary version 1.2.2, where users... High Unreviewed
CVE-2024-4151 was published May 20, 2024
Go JOSE Signature Validation Bypass High
CVE-2016-9122 was published for gopkg.in/square/go-jose.v1 (Go) May 18, 2021
Duplicate Advisory: Incorrect Access Control in github.com/nats-io/jwt and github.com/nats-io/nats-server/v2 High
GHSA-9r5x-fjv3-q6h4 was published for github.com/nats-io/jwt (Go) Feb 15, 2022 withdrawn
A vulnerability in the file policy feature that is used to inspect encrypted archive files of... Moderate Unreviewed
CVE-2024-20261 was published May 22, 2024
vantage6 collaboration admins can extend their influence by expanding the collaboration Low
CVE-2024-32969 was published for vantage6 (pip) May 22, 2024
Improper access control vulnerability in Prodys' Quantum Audio codec affecting versions 2.3.4t... Critical Unreviewed
CVE-2024-5168 was published May 23, 2024
iFrames Bypass Origin Checks for Tauri API Access Control Moderate
CVE-2024-35222 was published for tauri (Rust) May 23, 2024
begleynk chippers
tweidinger lucasfernog
A vulnerability in Cisco Webex Teams, formerly Cisco Spark, could allow an authenticated, remote... High Unreviewed
CVE-2018-0436 was published May 13, 2022
MediaWiki Incorrect Access Control vulnerability High
CVE-2019-12472 was published for mediawiki/core (Composer) May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database