GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,689

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,253 advisories

Filter by severity

Sort by

Least recently updated

In network service, there is a missing permission check. This could lead to local escalation of... Moderate Unreviewed

CVE-2022-39085 was published Jan 4, 2023

In network service, there is a missing permission check. This could lead to local escalation of... Moderate Unreviewed

CVE-2022-39084 was published Jan 4, 2023

In network service, there is a missing permission check. This could lead to local escalation of... Moderate Unreviewed

CVE-2022-39081 was published Jan 4, 2023

In network service, there is a missing permission check. This could lead to local escalation of... Moderate Unreviewed

CVE-2022-39083 was published Jan 4, 2023

In messaging service, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-44436 was published Jan 4, 2023

In music service, there is a missing permission check. This could lead to local denial of service... Moderate Unreviewed

CVE-2022-44424 was published Jan 4, 2023

In contacts service, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-39104 was published Jan 4, 2023

In music service, there is a missing permission check. This could lead to local denial of service... Moderate Unreviewed

CVE-2022-44422 was published Jan 4, 2023

In messaging service, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-44435 was published Jan 4, 2023

In messaging service, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-44434 was published Jan 4, 2023

In messaging service, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-44437 was published Jan 4, 2023

In music service, there is a missing permission check. This could lead to local denial of service... Moderate Unreviewed

CVE-2022-44423 was published Jan 4, 2023

In network service, there is a missing permission check. This could lead to local escalation of... Moderate Unreviewed

CVE-2022-39088 was published Jan 4, 2023

In network service, there is a missing permission check. This could lead to local escalation of... Moderate Unreviewed

CVE-2022-39086 was published Jan 4, 2023

In network service, there is a missing permission check. This could lead to local escalation of... Moderate Unreviewed

CVE-2022-39087 was published Jan 4, 2023

In messaging service, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-44438 was published Jan 4, 2023

In messaging service, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-44439 was published Jan 4, 2023

In getNearbyNotificationStreamingPolicy of DevicePolicyManagerService.java, there is a possible... Moderate Unreviewed

CVE-2022-20510 was published Dec 21, 2022

In multiple locations of DreamManagerService.java, there is a missing permission check. This... Moderate Unreviewed

CVE-2022-20504 was published Dec 20, 2022

The WP Shamsi plugin for WordPress is vulnerable to authorization bypass due to a missing... Moderate Unreviewed

CVE-2022-4555 was published Dec 20, 2022

In onOptionsItemSelected of ManageApplications.java, there is a possible bypass of profile owner... Moderate Unreviewed

CVE-2022-20544 was published Dec 19, 2022

The Directorist WordPress plugin before 7.4.4 does not prevent users with low privileges (like... Moderate Unreviewed

CVE-2022-3961 was published Dec 19, 2022

The ADB daemon in PAX Technology A930 PayDroid 7.1.1 Virgo V04.4.02 20211201 allows the execution... Moderate Unreviewed

CVE-2022-26581 was published Dec 17, 2022

The Mega Addons plugin for WordPress is vulnerable to authorization bypass due to a missing... Moderate Unreviewed

CVE-2022-4501 was published Dec 14, 2022

The Donation Button WordPress plugin through 4.0.0 does not properly check for privileges and... Moderate Unreviewed

CVE-2022-4004 was published Dec 12, 2022

Previous 1 2 … 75 76 77 78 79 … 90 91 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,253 advisories