GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
18 advisories
Filter by severity
Authd allows attacker-controlled usernames to yield controllable UIDs
Moderate
CVE-2024-9312
was published
for
github.com/ubuntu/authd
(Go)
Oct 10, 2024
An issue discovered in CS-Cart MultiVendor 4.16.1 allows attackers to alter arbitrary user...
Critical
Unreviewed
CVE-2023-26689
was published
Sep 25, 2024
Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy...
High
Unreviewed
CVE-2024-7265
was published
Aug 7, 2024
Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy...
High
Unreviewed
CVE-2024-7266
was published
Aug 7, 2024
A user/password reuse vulnerability exists in the FOXMAN-UN/UNEM application and server...
High
Unreviewed
CVE-2024-28020
was published
Jun 11, 2024
IBM QRadar SIEM 7.5 could allow a privileged user to configure user management that would...
Moderate
Unreviewed
CVE-2024-27269
was published
May 14, 2024
Improper verification of a user input in Open Source MANO v7-v12 allows an authenticated attacker...
High
Unreviewed
CVE-2022-35503
was published
Apr 22, 2024
A user enumeration vulnerability was found in Portainer CE 2.19.4. This issue occurs during user...
Moderate
Unreviewed
CVE-2024-29296
was published
Apr 10, 2024
ScaleFusion 10.5.2 does not properly limit users to the Edge application because file downloads...
Moderate
Unreviewed
CVE-2023-51750
was published
Jan 11, 2024
A privilege escalation vulnerability in GitLab EE affecting all versions from 16.0 prior to 16.4...
Moderate
Unreviewed
CVE-2023-3907
was published
Dec 18, 2023
A business logic error in GitLab EE affecting all versions prior to 16.2.8, 16.3 prior to 16.3.5,...
Moderate
Unreviewed
CVE-2023-3914
was published
Sep 29, 2023
An issue has been discovered in GitLab EE affecting all versions affecting all versions from 11...
Moderate
Unreviewed
CVE-2023-3115
was published
Sep 29, 2023
A vulnerability in the command line interface (cli) management interface of Cisco SD-WAN vManage...
Moderate
Unreviewed
CVE-2023-20253
was published
Sep 27, 2023
NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability...
High
Unreviewed
CVE-2023-25519
was published
Sep 14, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.0...
Moderate
Unreviewed
CVE-2023-3932
was published
Aug 3, 2023
Unintentional change of settings during initial registration of system administrators which uses...
High
Unreviewed
CVE-2023-0857
was published
May 11, 2023
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The...
Critical
Unreviewed
CVE-2022-32260
was published
Jun 15, 2022
A bug in CmpUserMgr component can lead to only partially applied security policies. This can...
Moderate
Unreviewed
CVE-2022-22518
was published
Apr 8, 2022
ProTip!
Advisories are also available from the
GraphQL API