GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
242 advisories
Filter by severity
An improper authorization check of local device settings in TeamViewer Remote between version 15...
Moderate
Unreviewed
CVE-2023-0837
was published
Jun 14, 2023
The Frontend File Manager plugin for WordPress is vulnerable to Privilege Escalation in versions...
Moderate
Unreviewed
CVE-2021-4344
was published
Jun 7, 2023
The 2J-SlideShow Plugin for WordPress is vulnerable to authorization bypass due to a missing...
Moderate
Unreviewed
CVE-2020-36729
was published
Jun 7, 2023
The Gallery Images Ape plugin for WordPress is vulnerable to Arbitrary Plugin Deactivation in...
Moderate
Unreviewed
CVE-2019-25149
was published
Jun 7, 2023
A security defect in Foundry's Comments functionality resulted in the retrieval of attachments to...
Moderate
Unreviewed
CVE-2023-30948
was published
Jun 6, 2023
Kyverno resource with a deletionTimestamp may allow policy circumvention
Moderate
CVE-2023-34091
was published
for
github.com/kyverno/kyverno
(Go)
Jun 5, 2023
The VK Blocks plugin for WordPress is vulnerable to improper authorization via the REST ...
Moderate
Unreviewed
CVE-2023-0583
was published
Jun 3, 2023
The VK Blocks plugin for WordPress is vulnerable to improper authorization via the REST ...
Moderate
Unreviewed
CVE-2023-0584
was published
Jun 3, 2023
On Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and in Splunk Cloud Platform...
Moderate
Unreviewed
CVE-2023-32717
was published
Jun 1, 2023
In JetBrains TeamCity before 2023.05 improper permission checks allowed users without appropriate...
Moderate
Unreviewed
CVE-2023-34219
was published
May 31, 2023
Improper Authorization in GitHub repository openemr/openemr prior to 7.0.1.
Moderate
Unreviewed
CVE-2023-2950
was published
May 28, 2023
Sensitive information disclosure due to improper authorization. The following products are...
Moderate
Unreviewed
CVE-2023-2782
was published
May 18, 2023
Sensitive information disclosure and manipulation due to improper authorization. The following...
Moderate
Unreviewed
CVE-2022-45450
was published
May 18, 2023
Multiple vulnerabilities in the API of Cisco DNA Center Software could allow an authenticated,...
Moderate
Unreviewed
CVE-2023-20182
was published
May 18, 2023
Multiple vulnerabilities in the API of Cisco DNA Center Software could allow an authenticated,...
Moderate
Unreviewed
CVE-2023-20183
was published
May 18, 2023
Multiple vulnerabilities in the API of Cisco DNA Center Software could allow an authenticated,...
Moderate
Unreviewed
CVE-2023-20184
was published
May 18, 2023
Improper Authorization in RestAPI in Checkmk GmbH's Checkmk versions <2.1.0p28 and <2.2.0b8...
Moderate
Unreviewed
CVE-2023-22348
was published
May 17, 2023
An improper authorization vulnerability exists in Rocket.Chat <6.0 that could allow a hacker to...
Moderate
Unreviewed
CVE-2023-28325
was published
May 12, 2023
Improper authorization in Intel(R) EMA Configuration Tool before version 1.0.4 and Intel(R) MC...
Moderate
Unreviewed
CVE-2022-41610
was published
May 10, 2023
Improper authorization in the Intel(R) EMA software before version 1.9.0.0 may allow an...
Moderate
Unreviewed
CVE-2022-45128
was published
May 10, 2023
Improper authorization in the Intel(R) SCS software all versions may allow an authenticated user...
Moderate
Unreviewed
CVE-2022-43465
was published
May 10, 2023
A vulnerability has been discovered in Rocket.Chat, where editing messages can change the...
Moderate
Unreviewed
CVE-2023-28317
was published
May 10, 2023
A vulnerability has been discovered in Rocket.Chat, where messages can be hidden regardless of...
Moderate
Unreviewed
CVE-2023-28318
was published
May 10, 2023
A vulnerability was found in SourceCodester Service Provider Management System 1.0 and classified...
Moderate
Unreviewed
CVE-2023-2345
was published
Apr 27, 2023
HashiCorp Vault's PKI mount vulnerable to denial of service
Moderate
CVE-2023-0665
was published
for
github.com/hashicorp/vault
(Go)
Mar 30, 2023
ProTip!
Advisories are also available from the
GraphQL API