GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
75 advisories
Filter by severity
A vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20230816. It...
Low
Unreviewed
CVE-2023-4546
was published
Aug 26, 2023
Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local attackers...
Low
Unreviewed
CVE-2023-30684
was published
Aug 10, 2023
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call...
Low
Unreviewed
CVE-2023-30682
was published
Aug 10, 2023
Improper access control vulnerability in Telecom prior to SMR Aug-2023 Release 1 allows local...
Low
Unreviewed
CVE-2023-30685
was published
Aug 10, 2023
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call...
Low
Unreviewed
CVE-2023-30683
was published
Aug 10, 2023
Improper access control in Audio system service prior to SMR Jul-2023 Release 1 allows attacker...
Low
Unreviewed
CVE-2023-30667
was published
Jul 6, 2023
Improper access control vulnerability in PersonaManagerService prior to SMR Jul-2023 Release 1...
Low
Unreviewed
CVE-2023-30640
was published
Jul 6, 2023
Improper access control vulnerability in clearAllGlobalProxy in MiscPolicy prior to SMR Nov-2022...
Low
Unreviewed
CVE-2022-39887
was published
Nov 10, 2022
Improper access control vulnerability in QuickShare prior to version 13.2.3.5 allows attackers to...
Low
Unreviewed
CVE-2022-39860
was published
Oct 7, 2022
Improper access control vulnerability in Telecom application prior to SMR Sep-2022 Release 1...
Low
Unreviewed
CVE-2022-36856
was published
Sep 10, 2022
Improper access control vulnerability in WebApp in Cameralyzer prior to versions 3.2.22, 3.3.22,...
Low
Unreviewed
CVE-2022-36832
was published
Aug 6, 2022
Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical...
Low
Unreviewed
CVE-2022-33720
was published
Aug 6, 2022
Improper access control vulnerability in KnoxCustomManagerService prior to SMR Jul-2022 Release 1...
Low
Unreviewed
CVE-2022-33701
was published
Jul 13, 2022
Improper access control vulnerability in Samsung Gallery prior to version 13.1.05.8 allows...
Low
Unreviewed
CVE-2022-33706
was published
Jul 13, 2022
Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior...
Low
Unreviewed
CVE-2022-30752
was published
Jul 13, 2022
Improper access control vulnerability in updateLastConnectedClientInfo function of...
Low
Unreviewed
CVE-2022-30750
was published
Jul 13, 2022
Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior...
Low
Unreviewed
CVE-2022-30751
was published
Jul 13, 2022
cPanel before 66.0.2 allows demo accounts to create databases and users (SEC-271).
Low
Unreviewed
CVE-2017-18421
was published
May 24, 2022
cPanel before 68.0.15 allows jailed accounts to restore files that are outside of the jail (SEC...
Low
Unreviewed
CVE-2017-18384
was published
May 24, 2022
Mozilla Firefox OS before 2.2 allows physically proximate attackers to bypass the pass-code...
Low
Unreviewed
CVE-2015-5960
was published
May 17, 2022
The Colorbox module 7.x-2.x before 7.x-2.10 for Drupal allows remote authenticated users with...
Low
Unreviewed
CVE-2015-7881
was published
May 17, 2022
The chunked upload API (ApiUpload) in MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x...
Low
Unreviewed
CVE-2015-8001
was published
May 17, 2022
The Gemalto SafeNet Luna HSM allows remote authenticated users to bypass intended key-export...
Low
Unreviewed
CVE-2015-5464
was published
May 17, 2022
runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass intended queue...
Low
Unreviewed
CVE-2015-7473
was published
May 17, 2022
SpringBoard in Apple iOS before 9 allows physically proximate attackers to bypass a lock-screen...
Low
Unreviewed
CVE-2015-5861
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API