GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,144
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,760
NuGet 678
pip 3,446
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,554

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

81 advisories

Filter by severity

Sort by

Least recently updated

In multiple functions of healthconnect, there is a possible leakage of exercise route data due to... Low Unreviewed

CVE-2024-0052 was published Mar 11, 2024

In applyCustomDescription of SaveUi.java, there is a possible way to view images belonging to a... Low Unreviewed

CVE-2024-0037 was published Feb 16, 2024

In cases where a multi-tenant stack user is operating Foundry’s Linter service, and the user... Low Unreviewed

CVE-2023-22836 was published Jan 29, 2024

Gallery3d on Tecno Camon X CA7 devices allows attackers to view hidden images by navigating to... Low Unreviewed

CVE-2023-52275 was published Dec 31, 2023

Missing Authorization vulnerability in Anders Thorborg.This issue affects Anders Thorborg: from n... Low Unreviewed

CVE-2023-22676 was published Dec 29, 2023

Sensitive information disclosure and manipulation due to missing authorization. The following... Low Unreviewed

CVE-2023-48676 was published Dec 14, 2023

An authorization issue affecting GitLab EE affecting all versions from 14.7 prior to 16.3.6, 16.4... Low Unreviewed

CVE-2023-4700 was published Nov 6, 2023

Sensitive information disclosure due to missing authorization. The following products are... Low Unreviewed

CVE-2023-45245 was published Oct 6, 2023

The com.full.dialer.top.secure.encrypted application through 1.0.1 for Android enables any... Low Unreviewed

CVE-2023-42469 was published Sep 13, 2023

Sensitive information disclosure due to missing authorization. The following products are... Low Unreviewed

CVE-2023-41750 was published Aug 31, 2023

Mattermost fails to properly show information in the UI, allowing a system admin to modify a... Low Unreviewed

CVE-2023-3587 was published Jul 17, 2023

In music service, there is a missing permission check. This could lead to local information... Low Unreviewed

CVE-2023-33880 was published Jul 12, 2023

In music service, there is a missing permission check. This could lead to local information... Low Unreviewed

CVE-2023-33879 was published Jul 12, 2023

The Nested Pages plugin for WordPress is vulnerable to unauthorized loss of data due to a missing... Low Unreviewed

CVE-2023-2434 was published May 31, 2023

In mnld, there is a possible leak of GPS location due to a missing permission check. This could... Low Unreviewed

CVE-2023-20726 was published May 16, 2023

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.3). The client query... Low Unreviewed

CVE-2023-27462 was published Mar 14, 2023

Missing Authorization vulnerability in One Hand Operation + prior to version 6.1.21 allows multi... Low Unreviewed

CVE-2023-21450 was published Feb 9, 2023

The Royal Elementor Addons WordPress plugin before 1.3.56 does not have authorization and CSRF... Low Unreviewed

CVE-2022-4102 was published Jan 10, 2023

In createDialog of WifiScanModeActivity.java, there is a possible way for a Guest user to enable... Low Unreviewed

CVE-2022-20537 was published Dec 21, 2022

In registerBroadcastReceiver of RcsService.java, there is a possible way to change preferred TTY... Low Unreviewed

CVE-2022-20536 was published Dec 21, 2022

In getSlice of WifiSlice.java, there is a possible way to connect a new WiFi network from the... Low Unreviewed

CVE-2022-20533 was published Dec 20, 2022

In launchConfigNewNetworkFragment of NetworkProviderSettings.java, there is a possible way for... Low Unreviewed

CVE-2022-20556 was published Dec 20, 2022

In onCreate of AddAppNetworksActivity.java, there is a possible way for a guest user to configure... Low Unreviewed

CVE-2022-20519 was published Dec 20, 2022

Improper authorization vulnerability in?CallBGProvider prior to SMR Nov-2022 Release 1 allows... Low Unreviewed

CVE-2022-39879 was published Nov 10, 2022

In AlwaysOnHotwordDetector of AlwaysOnHotwordDetector.java, there is a possible way to access the... Low Unreviewed

CVE-2022-20446 was published Nov 9, 2022

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

81 advisories