GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,562
Composer 4,198
Erlang 31
GitHub Actions 19
Go 1,986
Maven 5,163
npm 3,702
NuGet 660
pip 3,328
Pub 11
RubyGems 883
Rust 843
Swift 36

Unreviewed advisories

All unreviewed 233,892

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

563 advisories

Filter by severity

Sort by

Least recently updated

IBM Robotic Process Automation 21.0.2 could allow a local user to obtain sensitive web service... Moderate Unreviewed

CVE-2022-22414 was published Jun 21, 2022

Inappropriate implementation in iframe in Google Chrome prior to 101.0.4951.41 allowed a remote... Moderate Unreviewed

CVE-2022-1501 was published Jul 27, 2022

Insufficient policy enforcement in COOP in Google Chrome prior to 102.0.5005.61 allowed a remote... Moderate Unreviewed

CVE-2022-1873 was published Jul 28, 2022

Address information disclosure vulnerability in Cybozu Garoon 4.2.0 to 5.5.1 allows a remote... Moderate Unreviewed

CVE-2022-29467 was published Jul 5, 2022

Improper authentication vulnerability in Scheduler of Cybozu Garoon 4.10.0 to 5.5.1 allows a... Moderate Unreviewed

CVE-2022-28713 was published Jul 5, 2022

Browse restriction bypass vulnerability in Bulletin of Cybozu Garoon allows a remote... Moderate Unreviewed

CVE-2022-29471 was published Jul 5, 2022

Pexip Infinity 27.x before 27.2 has Improper Access Control. An attacker can sometimes join a... Moderate Unreviewed

CVE-2022-25357 was published Jul 18, 2022

The affected product is vulnerable to an improper access control, which may allow an... Moderate Unreviewed

CVE-2021-23173 was published Jan 11, 2022

Inappropriate implementation in Background Fetch API in Google Chrome prior to 100.0.4896.60... Moderate Unreviewed

CVE-2022-1139 was published Jul 24, 2022

Inappropriate implementation in Extensions in Google Chrome prior to 100.0.4896.60 allowed an... Moderate Unreviewed

CVE-2022-1137 was published Jul 24, 2022

Inappropriate implementation in Web Contents in Google Chrome prior to 101.0.4951.64 allowed a... Moderate Unreviewed

CVE-2022-1637 was published Jul 27, 2022

Incorrect authorization in GitLab EE affecting all versions from 10.7 prior to 14.10.5, 15.0... Moderate Unreviewed

CVE-2022-1983 was published Jul 2, 2022

JFrog Artifactory prior to version 7.31.10 and 6.23.38 is vulnerable to Sensitive Data Exposure... Moderate Unreviewed

CVE-2021-46687 was published Jul 7, 2022

Inappropriate implementation in Web Cursor in Google Chrome prior to 100.0.4896.60 allowed a... Moderate Unreviewed

CVE-2022-1138 was published Jul 24, 2022

Inappropriate implementation in Resource Timing in Google Chrome prior to 100.0.4896.60 allowed a... Moderate Unreviewed

CVE-2022-1146 was published Jul 24, 2022

Inappropriate implementation in HTML Parser in Google Chrome prior to 101.0.4951.41 allowed a... Moderate Unreviewed

CVE-2022-1498 was published Jul 27, 2022

A CWE-73: External Control of File Name or Path vulnerability exists that could cause loading of... Moderate Unreviewed

CVE-2022-34765 was published Jul 14, 2022

Inappropriate implementation in Web Share API in Google Chrome on Windows prior to 100.0.4896.60... Moderate Unreviewed

CVE-2022-1128 was published Jul 24, 2022

Inappropriate implementation in Extensions API in Google Chrome prior to 101.0.4951.41 allowed an... Moderate Unreviewed

CVE-2022-1488 was published Jul 27, 2022

Insufficient policy enforcement in DevTools in Google Chrome on Windows prior to 103.0.5060.53... Moderate Unreviewed

CVE-2022-2160 was published Jul 29, 2022

IBM Security Verify Information Queue 10.0.2 could allow a user to obtain sensitive information... Moderate Unreviewed

CVE-2022-35288 was published Jul 26, 2022

A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions), SICAM... Moderate Unreviewed

CVE-2022-34464 was published Jul 13, 2022

Inappropriate implementation in PDF in Google Chrome prior to 102.0.5005.61 allowed a remote... Moderate Unreviewed

CVE-2022-1875 was published Jul 28, 2022

Authenticated (custom plugin role) Arbitrary File Read via Export function vulnerability in... Moderate Unreviewed

CVE-2022-31475 was published Jul 22, 2022

An issue in the handling of environment variables was addressed with improved validation. This... Moderate Unreviewed

CVE-2022-26707 was published Sep 25, 2022

Previous 1 2 3 4 5 6 7 8 … 22 23 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

563 advisories