GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,908
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,520 advisories
Filter by severity
HPE Cray Parallel Application Launch Service (PALS) is subject to an authentication bypass.
Critical
Unreviewed
CVE-2024-22441
was published
Jun 13, 2024
Adobe Framemaker Publishing Server versions 2020.3, 2022.2 and earlier are affected by an...
Critical
Unreviewed
CVE-2024-30299
was published
Jun 13, 2024
Magento Open Source Improper Authentication vulnerability
High
CVE-2024-34103
was published
for
magento/community-edition
(Composer)
Jun 13, 2024
Apache Submarine Commons Utils has a hard-coded secret
Moderate
CVE-2024-36264
was published
for
apache-submarine
(Maven)
Jun 12, 2024
Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-35248
was published
Jun 11, 2024
A vulnerability has been identified in PowerSys (All versions < V3.11). The affected application...
Critical
Unreviewed
CVE-2024-36266
was published
Jun 11, 2024
An authentication issue was addressed with improved state management. This issue is fixed in...
Moderate
Unreviewed
CVE-2024-23251
was published
Jun 10, 2024
An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor...
Moderate
Unreviewed
CVE-2022-45168
was published
Jun 10, 2024
fprintd through 1.94.3 lacks a security attention mechanism, and thus unexpected actions might be...
High
Unreviewed
CVE-2024-37408
was published
Jun 8, 2024
ZendOpenID potential security issue in login mechanism
High
GHSA-3x57-m5p4-rgh4
was published
for
zendframework/zendopenid
(Composer)
Jun 7, 2024
Zendframework potential security issue in login mechanism
High
GHSA-9v78-h226-2rmq
was published
for
zendframework/zendframework1
(Composer)
Jun 7, 2024
TYPO3 Security Misconfiguration for Backend User Accounts
High
GHSA-c5mj-39cf-3pp5
was published
for
typo3/cms
(Composer)
Jun 7, 2024
A vulnerability was found in Clash up to 0.20.1 on Windows. It has been declared as critical....
High
Unreviewed
CVE-2024-5732
was published
Jun 7, 2024
Unauthenticated Access to sensitive settings in Argo CD
Moderate
CVE-2024-37152
was published
for
github.com/argoproj/argo-cd/v2/server
(Go)
Jun 6, 2024
Improper Authentication in CraftCMS two factor authentication plugin
Moderate
CVE-2024-5658
was published
for
born05/craft-twofactorauthentication
(Composer)
Jun 6, 2024
An issue was discovered in Samsung Mobile Processor, Automotive Processor, and Modem Exynos 9820,...
Low
Unreviewed
CVE-2023-50804
was published
Jun 5, 2024
Authentication Bypass in TYPO3 CMS
Moderate
GHSA-6xh8-8pfv-53vx
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Broken Authentication vulnerability in SoftLab Integrate Google Drive.This issue affects...
Moderate
Unreviewed
CVE-2024-35670
was published
Jun 4, 2024
Improper Authentication vulnerability in Pluggabl LLC Booster Elite for WooCommerce allows...
Moderate
Unreviewed
CVE-2023-51511
was published
Jun 4, 2024
Improper Authentication vulnerability in Pluggabl LLC Booster for WooCommerce allows Accessing...
Moderate
Unreviewed
CVE-2023-48747
was published
Jun 4, 2024
Improper Authentication vulnerability in wpase Admin and Site Enhancements (ASE) allows Accessing...
High
Unreviewed
CVE-2023-46630
was published
Jun 4, 2024
Improper Authentication vulnerability in WPMU DEV Defender Security allows Accessing...
Moderate
Unreviewed
CVE-2023-47189
was published
Jun 4, 2024
Northern.tech Mender Enterprise before 3.6.4 and 3.7.x before 3.7.4 has Weak Authentication.
Critical
Unreviewed
CVE-2024-37019
was published
Jun 3, 2024
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the...
Critical
Unreviewed
CVE-2023-43551
was published
Jun 3, 2024
ProTip!
Advisories are also available from the
GraphQL API