Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

267 advisories

Loading
AMI SPx contains a vulnerability in BMC where a User may cause an authentication bypass by... High Unreviewed
CVE-2023-34329 was published Jul 18, 2023
A CWE-290: Authentication Bypass by Spoofing vulnerability exists that could cause legitimate... High Unreviewed
CVE-2022-32747 was published Jul 6, 2023
Vulnerability of identity verification being bypassed in the Gallery module. Successful... Critical Unreviewed
CVE-2022-48513 was published Jul 6, 2023
An authentication bypass issue via spoofing was discovered in the token-based authentication... Critical Unreviewed
CVE-2023-22814 was published Jul 1, 2023
Emby Server < 4.7.12.0 is vulnerable to a login bypass attack by setting the X-Forwarded-For... Critical Unreviewed
CVE-2021-25827 was published Jun 28, 2023
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this... Moderate Unreviewed
CVE-2023-34167 was published Jun 19, 2023
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this... Moderate Unreviewed
CVE-2023-34160 was published Jun 19, 2023
Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this... Moderate Unreviewed
CVE-2023-34158 was published Jun 19, 2023
There is a traffic hijacking vulnerability in Huawei routers. Successful exploitation of this... Moderate Unreviewed
CVE-2022-48469 was published Jun 16, 2023
Authentication Bypass by Spoofing vulnerability in the password reset process of Pandora FMS... Critical Unreviewed
CVE-2023-2807 was published Jun 13, 2023
A lack of in app notification for entering fullscreen mode could have lead to a malicious website... High Unreviewed
CVE-2023-25743 was published Jun 2, 2023
Authentication Bypass by Spoofing vulnerability in CBOT Chatbot allows Authentication Bypass.This... Critical Unreviewed
CVE-2023-2887 was published May 25, 2023
The IEEE 802.11 specifications through 802.11ax allow physically proximate attackers to intercept... High Unreviewed
CVE-2022-47522 was published Apr 15, 2023
Legacy pairing and secure-connections pairing authentication in Bluetooth® BR/EDR Core... Moderate Unreviewed
CVE-2020-10135 was published May 24, 2022
The Wireless Emergency Alerts (WEA) protocol allows remote attackers to spoof a Presidential... Moderate Unreviewed
CVE-2019-18659 was published May 24, 2022
Cache Poisoning issue exists in DNS Response Rate Limiting. Moderate Unreviewed
CVE-2013-5661 was published May 5, 2022
in OpenHarmony v3.2.4 and prior versions allow a remote attacker bypass permission verification... High Unreviewed
CVE-2024-22092 was published Apr 2, 2024
** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** [An attacker can capture an... Critical Unreviewed
CVE-2023-3243 was published Jun 28, 2023
Brocade SANnav Web interface before Brocade SANnav v2.3.0 and v2.2.2a allows remote... Critical Unreviewed
CVE-2023-31424 was published Aug 31, 2023
In JetBrains YouTrack before 2024.1.25893 creation comments on behalf of an arbitrary user in... Moderate Unreviewed
CVE-2024-28228 was published Mar 7, 2024
Dell Secure Connect Gateway 5.20 contains an improper authentication vulnerability during the SRS... High Unreviewed
CVE-2024-22457 was published Mar 1, 2024
An issue discovered in Dronetag Drone Scanner 1.5.2 allows attackers to impersonate other drones... High Unreviewed
CVE-2024-22520 was published Feb 7, 2024
The web interface on the snom VoIP phones snom 300, snom 320, snom 360, snom 370, and snom 820... High Unreviewed
CVE-2009-1048 was published May 2, 2022
Authentication Bypass by Spoofing in github.com/greenpau/caddy-security Moderate
CVE-2024-21494 was published for github.com/greenpau/caddy-security (Go) Feb 17, 2024
Saia Burgess Controls (SBC) PCD through 2022-05-06 allows Authentication bypass. According to... High Unreviewed
CVE-2022-30319 was published Jul 29, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database