GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
177 advisories
Filter by severity
Gnuboard g6 6.0.7 is vulnerable to Session hijacking due to a CORS misconfiguration.
Critical
Unreviewed
CVE-2024-41475
was published
Aug 12, 2024
While copying individual autoupdater log files, reparse point check was missing which could...
High
Unreviewed
CVE-2024-23458
was published
Aug 6, 2024
Origin validation error vulnerability exists in SKYSEA Client View Ver.3.013.00 to Ver.19.210.04e...
High
Unreviewed
CVE-2024-41143
was published
Jul 29, 2024
There is a permissions and access control vulnerability in ZXCLOUD IRAI.An attacker can elevate...
Moderate
Unreviewed
CVE-2024-22062
was published
Jul 9, 2024
Origin Validation Error in GitHub repository stitionai/devika prior to -.
High
Unreviewed
CVE-2024-5549
was published
Jul 9, 2024
Lack of validation of origin in federation API in Conduit, allowing any remote server to...
Moderate
Unreviewed
CVE-2024-6301
was published
Jun 25, 2024
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows...
Low
Unreviewed
CVE-2024-5905
was published
Jun 12, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2024-36302
was published
Jun 11, 2024
An origin validation vulnerability exists in
BIG-IP APM browser network access VPN client
...
High
Unreviewed
CVE-2024-28883
was published
May 8, 2024
A vulnerability exists in the too permissive HTTP response header web server settings of the...
High
Unreviewed
CVE-2024-2377
was published
Apr 30, 2024
Brocade
Web Interface in Brocade Fabric OS v9.x and before v9.2.0 does not
properly represent...
Moderate
Unreviewed
CVE-2023-5973
was published
Apr 5, 2024
A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between...
Moderate
Unreviewed
CVE-2024-2182
was published
Mar 12, 2024
An unauthenticated remote attacker can perform a remote code execution due to an origin...
Moderate
Unreviewed
CVE-2024-25996
was published
Mar 12, 2024
IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 could be vulnerable to information leakage due to...
Moderate
Unreviewed
CVE-2023-30996
was published
Feb 26, 2024
An unauthenticated attacker can send a ping request from one network to another through an error...
Moderate
Unreviewed
CVE-2024-24782
was published
Feb 13, 2024
A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker...
High
Unreviewed
CVE-2023-40547
was published
Jan 25, 2024
Incorrect security UI in Payments in Google Chrome prior to 121.0.6167.85 allowed a remote...
Moderate
Unreviewed
CVE-2024-0814
was published
Jan 24, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47199
was published
Jan 23, 2024
A plug-in manager origin validation vulnerability in the Trend Micro Apex One security agent...
High
Unreviewed
CVE-2023-47200
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47196
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47194
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47198
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47195
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47193
was published
Jan 23, 2024
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local...
High
Unreviewed
CVE-2023-47197
was published
Jan 23, 2024
ProTip!
Advisories are also available from the
GraphQL API