GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,024
Maven
5,000+
npm
3,731
NuGet
662
pip
3,407
Pub
12
RubyGems
891
Rust
864
Swift
36
Unreviewed advisories
All unreviewed
5,000+
15 advisories
Filter by severity
There was a man-in-the-middle (MITM) vulnerability present in the Confluence Previews plugin in...
Moderate
Unreviewed
CVE-2019-15006
was published
May 24, 2022
A vulnerability in the command-line interface in Brocade Fabric OS before Brocade Fabric OS v8.2...
Moderate
Unreviewed
CVE-2020-15372
was published
May 24, 2022
Header dropping in traefik
Moderate
CVE-2021-32813
was published
for
github.com/traefik/traefik
(Go)
Aug 5, 2021
A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS...
Moderate
Unreviewed
CVE-2019-1595
was published
May 13, 2022
Budibase Improper Access Control vulnerability
Moderate
CVE-2022-3225
was published
for
@budibase/bbui
(npm)
Sep 17, 2022
Improper Control of Dynamically-Managed Code Resources in config-shield
Moderate
CVE-2021-26276
was published
for
config-shield
(npm)
Apr 13, 2021
Eclipse Glassfish remote code execution issue
Moderate
CVE-2023-5763
was published
for
org.glassfish.main.orb:orb-connector
(Maven)
Nov 3, 2023
An information disclosure vulnerability exists when the Windows GDI component improperly...
Moderate
Unreviewed
CVE-2020-1091
was published
May 24, 2022
An information disclosure vulnerability exists when the Windows GDI component improperly...
Moderate
Unreviewed
CVE-2020-1097
was published
May 24, 2022
GitHub Enterprise before 20120304 does not properly restrict the use of a hash to provide values...
Moderate
Unreviewed
CVE-2012-2055
was published
May 17, 2022
Cross SiteScripting vulnerability in Citrix Session Recording allows attacker to perform Cross...
Moderate
Unreviewed
CVE-2023-6184
was published
Jan 18, 2024
Improper Control of Dynamically-Managed Code Resources vulnerability in Logitech Logi Tune on...
Moderate
Unreviewed
CVE-2024-2537
was published
Mar 15, 2024
A vulnerability that poses a potential risk of polluting the MXsecurity sqlite database and the...
Moderate
Unreviewed
CVE-2023-39983
was published
Sep 2, 2023
CRI-O vulnerable to /etc/passwd tampering resulting in Privilege Escalation
Moderate
CVE-2022-4318
was published
for
github.com/cri-o/cri-o
(Go)
Dec 29, 2022
Sentry SDK Prototype Pollution gadget in JavaScript SDKs
Moderate
GHSA-593m-55hh-j8gv
was published
for
@sentry/browser
(npm)
Oct 3, 2024
ProTip!
Advisories are also available from the
GraphQL API