Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,192 advisories

Loading
Hozard alarm system (Alarmsysteem) v1.0 is vulnerable to Improper Authentication. Commands sent... Moderate Unreviewed
CVE-2023-50127 was published Jan 11, 2024
A vulnerability was found in Uniway Router 2.0. It has been declared as critical. This... Moderate Unreviewed
CVE-2023-7211 was published Jan 7, 2024
Improper authentication vulnerability in Bluetooth pairing process prior to SMR Jan-2024 Release... Moderate Unreviewed
CVE-2024-20803 was published Jan 4, 2024
Arbitrary remote file read in Wrangler dev server Moderate
CVE-2023-7079 was published for wrangler (npm) Jan 3, 2024
Lekensteyn
An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) 6.3.8.6 (#718), allows... Moderate Unreviewed
CVE-2023-31292 was published Dec 29, 2023
A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password... Moderate Unreviewed
CVE-2023-4641 was published Dec 27, 2023
The Quiz Maker WordPress plugin before 6.4.9.5 does not adequately authorize the ... Moderate Unreviewed
CVE-2023-6155 was published Dec 26, 2023
yiisoft/yii2-authclient's Oauth2 PKCE implementation is vulnerable Moderate
CVE-2023-50714 was published for yiisoft/yii2-authclient (Composer) Dec 18, 2023
rhertogh
Improper authentication in some Zoom clients before version 5.16.5 may allow an authenticated... Moderate Unreviewed
CVE-2023-49646 was published Dec 14, 2023
The Goodix Fingerprint Device, as shipped in Dell Inspiron 15 computers, does not follow the... Moderate Unreviewed
CVE-2023-50430 was published Dec 10, 2023
Improper Authentication vulnerability in Samsung Pass prior to version 4.3.00.17 allows physical... Moderate Unreviewed
CVE-2023-42576 was published Dec 5, 2023
Tyler Technologies Magistrate Court Case Management Plus allows an unauthenticated, remote... Moderate Unreviewed
CVE-2023-6354 was published Nov 30, 2023
Tyler Technologies Court Case Management Plus allows a remote, unauthenticated attacker to... Moderate Unreviewed
CVE-2023-6344 was published Nov 30, 2023
Tyler Technologies Court Case Management Plus allows a remote, unauthenticated attacker to... Moderate Unreviewed
CVE-2023-6343 was published Nov 30, 2023
Tyler Technologies Court Case Management Plus allows a remote attacker to authenticate as any... Moderate Unreviewed
CVE-2023-6342 was published Nov 30, 2023
Tyler Technologies Court Case Management Plus may store backups in a location that can be... Moderate Unreviewed
CVE-2023-6375 was published Nov 30, 2023
Tyler Technologies Civil and Criminal Electronic Filing allows an unauthenticated, remote... Moderate Unreviewed
CVE-2023-6353 was published Nov 30, 2023
An Improper Authentication vulnerability in the Schweitzer Engineering Laboratories SEL-451 could... Moderate Unreviewed
CVE-2023-34388 was published Nov 30, 2023
An authentication bypass vulnerability in the Direct Connection Module in Ezviz CS-C6N-xxx prior... Moderate Unreviewed
CVE-2023-48121 was published Nov 28, 2023
Improper Authentication vulnerabiity in Samsung Pass prior to version 4.3.00.17 allows physical... Moderate Unreviewed
CVE-2023-42554 was published Nov 15, 2023
Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation... Moderate Unreviewed
CVE-2023-43582 was published Nov 15, 2023
Improper authentication in some Intel(R) NUC Kits NUC7PJYH and NUC7CJYH Realtek* SD Card Reader... Moderate Unreviewed
CVE-2023-32661 was published Nov 14, 2023
Improper authentication for some Intel Unison software may allow an authenticated user to... Moderate Unreviewed
CVE-2023-22663 was published Nov 14, 2023
Improper authentication in some Intel(R) NUC Kit NUC11PH USB firmware installation software... Moderate Unreviewed
CVE-2023-28377 was published Nov 14, 2023
TYPO3 vulnerable to Weak Authentication in Session Handling Moderate
CVE-2023-47127 was published for typo3/cms-core (Composer) Nov 14, 2023
dogawaf bnf
ohader
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database