GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,689

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,253 advisories

Filter by severity

Sort by

Least recently updated

Missing authorization vulnerability exists in Kyocera Document Solutions MFPs and printers, which... Moderate Unreviewed

CVE-2022-41807 was published Dec 5, 2022

RTL8168FP-CG Dash remote management function has missing authorization. An unauthenticated... Moderate Unreviewed

CVE-2022-32966 was published Nov 29, 2022

The Theme and plugin translation for Polylang is vulnerable to authorization bypass in versions... Moderate Unreviewed

CVE-2022-4169 was published Nov 28, 2022

The ESL (Electronic Shelf Label) protocol, as implemented by (for example) the OV80e934802 RF... Moderate Unreviewed

CVE-2022-45914 was published Nov 27, 2022

The Five Star Restaurant Reservations WordPress plugin before 2.4.12 does not have authorisation... Moderate Unreviewed

CVE-2022-0421 was published Nov 21, 2022

The reSmush.it : the only free Image Optimizer & compress plugin WordPress plugin before 0.4.4... Moderate Unreviewed

CVE-2022-2450 was published Nov 14, 2022

Nonce token leakage and missing authorization in SearchWP premium plugin <= 4.2.5 on WordPress... Moderate Unreviewed

CVE-2022-40223 was published Nov 9, 2022

Fedora CoreOS supports setting a GRUB bootloader password using a Butane config. When this... Moderate Unreviewed

CVE-2022-3675 was published Nov 3, 2022

The Bricks theme for WordPress is vulnerable to authorization bypass due to a missing capability... Moderate Unreviewed

CVE-2022-3400 was published Oct 28, 2022

It may be possible to gain some details of the deployment through a well-crafted attack. This may... Moderate Unreviewed

CVE-2022-24669 was published Oct 27, 2022

Improper access control vulnerability in GROWI prior to v5.1.4 (v5 series) and versions prior to... Moderate Unreviewed

CVE-2022-41799 was published Oct 24, 2022

A broken access control vulnerability in the First_network_func function of spx_restservice... Moderate Unreviewed

CVE-2021-26732 was published Oct 24, 2022

A broken access control vulnerability in the SubNet_handler_func function of spx_restservice... Moderate Unreviewed

CVE-2021-44776 was published Oct 24, 2022

The Import all XML, CSV & TXT WordPress plugin before 6.5.8 does not have authorisation in some... Moderate Unreviewed

CVE-2022-3244 was published Oct 17, 2022

In Gallery service, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-39103 was published Oct 15, 2022

In Music service, there is a missing permission check. This could lead to local denial of service... Moderate Unreviewed

CVE-2022-39113 was published Oct 15, 2022

In messaging service, there is a missing permission check. This could lead to access unexpected... Moderate Unreviewed

CVE-2022-38697 was published Oct 15, 2022

In Music service, there is a missing permission check. This could lead to local denial of service... Moderate Unreviewed

CVE-2022-39114 was published Oct 15, 2022

In music service, there is a missing permission check. This could lead to local denial of service... Moderate Unreviewed

CVE-2022-38679 was published Oct 15, 2022

In Music service, there is a missing permission check. This could lead to local denial of service... Moderate Unreviewed

CVE-2022-39115 was published Oct 15, 2022

In telephony service, there is a missing permission check. This could lead to local information... Moderate Unreviewed

CVE-2022-38688 was published Oct 15, 2022

In Music service, there is a missing permission check. This could lead to local denial of service... Moderate Unreviewed

CVE-2022-39112 was published Oct 15, 2022

In messaging service, there is a missing permission check. This could lead to local information... Moderate Unreviewed

CVE-2022-39117 was published Oct 15, 2022

In telephony service, there is a missing permission check. This could lead to local information... Moderate Unreviewed

CVE-2022-38689 was published Oct 15, 2022

In messaging service, there is a missing permission check. This could lead to local denial of... Moderate Unreviewed

CVE-2022-38687 was published Oct 15, 2022

Previous 1 2 … 76 77 78 79 80 … 90 91 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,253 advisories