GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,269 advisories
Filter by severity
OpenStack Identity Keystone Improper Access Control
Moderate
CVE-2016-4911
was published
for
keystone
(pip)
May 17, 2022
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Access...
High
Unreviewed
CVE-2024-34099
was published
May 15, 2024
MediaWiki Incorrect Access Control vulnerability
Moderate
CVE-2019-12467
was published
for
mediawiki/core
(Composer)
May 24, 2022
Wikimedia MediaWiki Incorrect Access Control vulnerability
Critical
CVE-2019-12468
was published
for
mediawiki/core
(Composer)
May 24, 2022
MediaWiki Incorrect Access Control vulnerability
Moderate
CVE-2019-12469
was published
for
mediawiki/core
(Composer)
May 24, 2022
Wikimedia MediaWik exposed suppressed log in RevisionDelete page
Moderate
CVE-2019-12470
was published
for
mediawiki/core
(Composer)
May 24, 2022
Mediawiki tarball is missing .htaccess files
Moderate
CVE-2018-13258
was published
for
mediawiki/core
(Composer)
May 14, 2022
MLflow allows low privilege users to delete any artifact
Moderate
CVE-2024-4263
was published
for
mlflow
(pip)
May 16, 2024
Improper access control for some Intel(R) Thunderbolt driver software before version 89 may allow...
High
Unreviewed
CVE-2022-37410
was published
May 16, 2024
Improper access control in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225...
High
Unreviewed
CVE-2022-37341
was published
May 16, 2024
Improper access control in some Intel(R) GPA software installers before version 2023.3 may allow...
High
Unreviewed
CVE-2023-40071
was published
May 16, 2024
Improper access control for some Intel(R) CST software before version 2.1.10300 may allow an...
Moderate
Unreviewed
CVE-2023-39433
was published
May 16, 2024
Improper access control in some Intel(R) GPA Framework software installers before version 2023.3...
High
Unreviewed
CVE-2023-43748
was published
May 16, 2024
Improper access control in some Intel(R) CST before version 2.1.10300 may allow an authenticated...
Moderate
Unreviewed
CVE-2023-43487
was published
May 16, 2024
Improper access control in some Intel(R) Ethernet Controller Administrative Tools software before...
Moderate
Unreviewed
CVE-2024-21828
was published
May 16, 2024
Improper access control for some Intel(R) Wireless Bluetooth products for Windows before version...
Moderate
Unreviewed
CVE-2023-47859
was published
May 16, 2024
An Improper Access Control vulnerability exists in lunary-ai/lunary version 1.2.2, where users...
High
Unreviewed
CVE-2024-4151
was published
May 20, 2024
Go JOSE Signature Validation Bypass
High
CVE-2016-9122
was published
for
gopkg.in/square/go-jose.v1
(Go)
May 18, 2021
Duplicate Advisory: Incorrect Access Control in github.com/nats-io/jwt and github.com/nats-io/nats-server/v2
High
GHSA-9r5x-fjv3-q6h4
was published
for
github.com/nats-io/jwt
(Go)
Feb 15, 2022
•
withdrawn
A vulnerability in the file policy feature that is used to inspect encrypted archive files of...
Moderate
Unreviewed
CVE-2024-20261
was published
May 22, 2024
vantage6 collaboration admins can extend their influence by expanding the collaboration
Low
CVE-2024-32969
was published
for
vantage6
(pip)
May 22, 2024
Improper access control vulnerability in Prodys' Quantum Audio codec affecting versions 2.3.4t...
Critical
Unreviewed
CVE-2024-5168
was published
May 23, 2024
iFrames Bypass Origin Checks for Tauri API Access Control
Moderate
CVE-2024-35222
was published
for
tauri
(Rust)
May 23, 2024
A vulnerability in Cisco Webex Teams, formerly Cisco Spark, could allow an authenticated, remote...
High
Unreviewed
CVE-2018-0436
was published
May 13, 2022
MediaWiki Incorrect Access Control vulnerability
High
CVE-2019-12472
was published
for
mediawiki/core
(Composer)
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API