Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

98 advisories

Loading
Mattermost fails to properly restrict the access of files attached to posts Low
CVE-2024-23488 was published for github.com/mattermost/mattermost/server/v8 (Go) Feb 29, 2024
An issue has been discovered in GitLab affecting all versions before 16.7.6, all versions... Low Unreviewed
CVE-2023-3509 was published Feb 22, 2024
Mattermost fails to check the required permissions Low
CVE-2024-24776 was published for github.com/mattermost/mattermost/server/v8 (Go) Feb 9, 2024
Mattermost allows demoted guests to change group names Low
CVE-2023-50333 was published for github.com/mattermost/mattermost/server/v8 (Go) Jan 2, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 8.17 before 16.4.4... Low Unreviewed
CVE-2023-3511 was published Dec 15, 2023
Broken access control in Silverpeas Low
CVE-2023-47320 was published for org.silverpeas.core:silverpeas-core-war (Maven) Dec 13, 2023
An improper access control vulnerability [CWE-284] in FortiOS version 7.2.0, version 7.0.13 and... Low Unreviewed
CVE-2023-47536 was published Dec 13, 2023
Mattermost fails to validate team membership when a user attempts to access a playbook, allowing... Low Unreviewed
CVE-2023-6547 was published Dec 12, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 8.13 before 16.4.3... Low Unreviewed
CVE-2023-4658 was published Dec 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 12.1 before 16.4.3,... Low Unreviewed
CVE-2023-3443 was published Dec 1, 2023
Improper access control in the Intel Smart Campus android application before version 9.4 may... Low Unreviewed
CVE-2023-38411 was published Nov 14, 2023
Improper access control for some Intel Unison software may allow a privileged user to potentially... Low Unreviewed
CVE-2022-41659 was published Nov 14, 2023
When duplicating a BigBlueButton activity, the original meeting ID was also duplicated instead of... Low Unreviewed
CVE-2023-5543 was published Nov 10, 2023
An authorization issue affecting GitLab EE affecting all versions from 14.7 prior to 16.3.6, 16.4... Low Unreviewed
CVE-2023-4700 was published Nov 6, 2023
Improper access control in system property prior to SMR Oct-2023 Release 1 allows local attacker... Low Unreviewed
CVE-2023-30732 was published Oct 4, 2023
A flaw exists in FlashBlade Purity (OE) Version 4.1.0 whereby a user with privileges to extend an... Low Unreviewed
CVE-2023-28372 was published Oct 3, 2023
Improper access control vulnerability in Weather prior to SMR Sep-2023 Release 1 allows attackers... Low Unreviewed
CVE-2023-30715 was published Sep 6, 2023
A vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20230816. It... Low Unreviewed
CVE-2023-4546 was published Aug 26, 2023
Mattermost fails to correctly delete attachments Low
CVE-2023-4105 was published for github.com/mattermost/mattermost-server/v6 (Go) Aug 11, 2023
Froxlor vulnerable to business logic errors Low
CVE-2023-4304 was published for froxlor/froxlor (Composer) Aug 11, 2023
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call... Low Unreviewed
CVE-2023-30682 was published Aug 10, 2023
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call... Low Unreviewed
CVE-2023-30683 was published Aug 10, 2023
Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local attackers... Low Unreviewed
CVE-2023-30684 was published Aug 10, 2023
Improper access control vulnerability in Telecom prior to SMR Aug-2023 Release 1 allows local... Low Unreviewed
CVE-2023-30685 was published Aug 10, 2023
Improper access control in Audio system service prior to SMR Jul-2023 Release 1 allows attacker... Low Unreviewed
CVE-2023-30667 was published Jul 6, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database