GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,184
Composer 5,320
Erlang 42
GitHub Actions 43
Go 3,164
Maven 6,299
npm 5,149
NuGet 863
pip 4,458
Pub 12
RubyGems 991
Rust 1,184
Swift 50

Unreviewed advisories

All unreviewed 293,413

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

320,597 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Saia Burgess Controls (SBC) PCD through 2022-05-06 allows Authentication bypass. According to... High Unreviewed

CVE-2022-30319 was published Jul 29, 2022

When receiving an HTML email that contained an <code>iframe</code> element, which used a <code... Moderate Unreviewed

CVE-2022-3032 was published Dec 22, 2022

Dell Secure Connect Gateway (SCG) Policy Manager, all versions, contain an improper authorization... Moderate Unreviewed

CVE-2024-24900 was published Mar 1, 2024

Dell Secure Connect Gateway 5.20 contains an improper authentication vulnerability during the SRS... High Unreviewed

CVE-2024-22457 was published Mar 1, 2024

Autogalaxy stores usernames and passwords in cleartext in cookies, which makes it easier for... Moderate Unreviewed

CVE-2001-1536 was published Apr 30, 2022

Vulnerability of null references in the motor module.Successful exploitation of this... Low Unreviewed

CVE-2023-52371 was published Feb 18, 2024

SQL Injection vulnerability in Stock Management System 1.0 allows a remote attacker to execute... Critical Unreviewed

CVE-2023-51951 was published Feb 5, 2024

A vulnerability was found in ZhongBangKeJi CRMEB 5.2.2. It has been classified as problematic.... Low Unreviewed

CVE-2024-1703 was published Feb 21, 2024

The dechunk filter in PHP 5.3 through 5.3.2, when decoding an HTTP chunked encoding stream,... High Unreviewed

CVE-2010-1866 was published May 17, 2022

Session data between cluster nodes during cluster synchronization is not properly encrypted in... Critical Unreviewed

CVE-2018-20810 was published May 24, 2022

IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed

CVE-2024-22335 was published Feb 17, 2024

The nodejs framework in OpenVPN Connect 3.0 through 3.4.3 (Windows)/3.4.7 (macOS) was not... High Unreviewed

CVE-2023-7245 was published Feb 20, 2024

An XSS issue was found with Psaldownload.cgi in Pulse Secure Pulse Connect Secure (PCS) 8.3R2... Moderate Unreviewed

CVE-2018-20814 was published May 24, 2022

In Montala ResourceSpace through 9.8 before r19636, csv_export_results_metadata.php allows... Moderate Unreviewed

CVE-2022-31260 was published Jul 18, 2022

CandidATS version 3.0.0 allows an external attacker to read arbitrary files from the server. This... High Unreviewed

CVE-2022-42745 was published Nov 4, 2022

A vulnerability, which was classified as problematic, has been found in ZKTeco ZKBio Access IVS... Moderate Unreviewed

CVE-2024-1706 was published Feb 21, 2024

The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to... Moderate Unreviewed

CVE-2010-1637 was published May 17, 2022

Dell Unity, versions prior to 5.4, contains a cross-site scripting (XSS) vulnerability. An... Moderate Unreviewed

CVE-2024-0169 was published Feb 12, 2024

An invalid free in mb_detect_order can cause the application to crash or potentially result in... High Unreviewed

CVE-2019-11930 was published May 24, 2022

A hidden RPC service issue was found with Pulse Secure Pulse Connect Secure 8.3RX before 8.3R2... Moderate Unreviewed

CVE-2018-20811 was published May 24, 2022

The Markdown parser in Zulip server before 2.0.5 used a regular expression vulnerable to... Moderate Unreviewed

CVE-2019-16215 was published May 24, 2022

A cross-site scripting (XSS) vulnerability in Task Manager App v1.0 allows attackers to execute... Moderate Unreviewed

CVE-2024-25221 was published Feb 14, 2024

Transient DOS in Multi-Mode Call Processor while processing UE policy container. High Unreviewed

CVE-2023-33057 was published Feb 6, 2024

Dell Secure Connect Gateway, 5.18, contains an Inadequate Encryption Strength Vulnerability. An... Low Unreviewed

CVE-2024-22458 was published Mar 1, 2024

IBM QRadar Suite 1.10.12.0 through 1.10.17.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10... Moderate Unreviewed

CVE-2024-22336 was published Feb 17, 2024

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

320,597 advisories