GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
190 advisories
Filter by severity
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously...
High
Unreviewed
CVE-2023-5557
was published
Oct 13, 2023
An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1...
Moderate
Unreviewed
CVE-2023-45372
was published
Oct 9, 2023
A protection mechanism failure in Fortinet FortiWeb 7.2.0 through 7.2.1, 7.0.0 through 7.0.6, 6.4...
High
Unreviewed
CVE-2023-34984
was published
Sep 13, 2023
Remote Code Execution in Custom Integration Upload
High
CVE-2023-41319
was published
for
ethyca-fides
(pip)
Sep 7, 2023
Protection Mechanism Failure in bc_tui trustlet from Samsung Blockchain Keystore prior to version...
High
Unreviewed
CVE-2023-30722
was published
Sep 6, 2023
Dell PowerScale OneFS, 9.5.0.x, contains a protection mechanism bypass vulnerability. An...
Critical
Unreviewed
CVE-2023-32493
was published
Aug 16, 2023
Protection mechanism failure in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM...
High
Unreviewed
CVE-2023-34427
was published
Aug 11, 2023
Protection mechanism failure for some Intel(R) PROSet/Wireless WiFi software may allow a...
Moderate
Unreviewed
CVE-2022-46329
was published
Aug 11, 2023
Protection mechanism failure for some Intel(R) Arc(TM) graphics cards A770 and A750 sold between...
Moderate
Unreviewed
CVE-2022-41984
was published
Aug 11, 2023
Windows Remote Desktop Security Feature Bypass Vulnerability
High
Unreviewed
CVE-2023-35352
was published
Jul 11, 2023
A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered...
High
Unreviewed
CVE-2023-3089
was published
Jul 5, 2023
A vulnerability has been identified in Totally Integrated Automation Portal (TIA Portal) V14 (All...
Moderate
Unreviewed
CVE-2023-30757
was published
Jun 13, 2023
Potential HTTP policy bypass when using header rules in Cilium
Moderate
CVE-2023-30851
was published
for
github.com/cilium/cilium
(Go)
May 22, 2023
Protection mechanism failure in the Intel(R) DCM software before version 5.1 may allow an...
High
Unreviewed
CVE-2022-41979
was published
May 10, 2023
The Metform Elementor Contact Form Builder plugin for WordPress is vulnerable to reCaptcha Bypass...
Moderate
Unreviewed
CVE-2023-0085
was published
Mar 2, 2023
Sandbox escape in Jenkins Email Extension Plugin
Critical
CVE-2023-25765
was published
for
org.jenkins-ci.plugins:email-ext
(Maven)
Feb 15, 2023
User login brute force protection functionality bypass
Critical
Unreviewed
CVE-2022-27516
was published
Nov 9, 2022
Jenkins NUnit Plugin vulnerable to Protection Mechanism Failure
Moderate
CVE-2022-43414
was published
for
org.jenkins-ci.plugins:nunit
(Maven)
Oct 19, 2022
Agent-to-controller security bypass vulnerability in Jenkins Compuware Xpediter Code Coverage Plugin
Moderate
CVE-2022-43424
was published
for
com.compuware.jenkins:compuware-xpediter-code-coverage
(Maven)
Oct 19, 2022
Agent-to-controller security bypass vulnerability in Jenkins BMC Compuware Source Code Download for Endevor, PDS, and ISPW Plugin
Moderate
CVE-2022-43423
was published
for
com.compuware.jenkins:compuware-scm-downloader
(Maven)
Oct 19, 2022
Agent-to-controller security bypass vulnerabilities in Jenkins Compuware Topaz for Total Test Plugin
High
CVE-2022-43428
was published
for
com.compuware.jenkins:compuware-topaz-for-total-test
(Maven)
Oct 19, 2022
Jenkins Compuware Topaz for Total Test Plugin vulnerable to Protection Mechanism Failure
High
CVE-2022-43429
was published
for
com.compuware.jenkins:compuware-topaz-for-total-test
(Maven)
Oct 19, 2022
Content-Security-Policy protection for user content disabled by Jenkins ScreenRecorder Plugin
High
CVE-2022-43433
was published
for
io.jenkins.plugins:screenrecorder
(Maven)
Oct 19, 2022
Content-Security-Policy protection for user content disabled by Jenkins XFramium Builder Plugin
High
CVE-2022-43432
was published
for
org.jenkins-ci.plugins:xframium
(Maven)
Oct 19, 2022
Sandbox bypass vulnerabilities in Jenkins Script Security Plugin and in Pipeline: Groovy Plugin
High
CVE-2022-43401
was published
for
org.jenkins-ci.plugins.workflow:workflow-cps
(Maven)
Oct 19, 2022
ProTip!
Advisories are also available from the
GraphQL API