GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,027
Composer 4,062
Erlang 29
GitHub Actions 19
Go 1,889
Maven 5,089
npm 3,622
NuGet 638
pip 3,233
Pub 10
RubyGems 857
Rust 818
Swift 35

Unreviewed advisories

All unreviewed 228,114

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

180 advisories

Filter by severity

Sort by

Least recently updated

Moodle Logged in users could view all calendar events Moderate

CVE-2019-3848 was published for moodle/moodle (Composer) May 13, 2022

Incorrect Authorization in Jenkins Moderate

CVE-2018-1999004 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022

Incorrect Authorization in Jenkins Moderate

CVE-2018-1999003 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022

Improper Authentication in moodle Moderate

CVE-2022-0985 was published for moodle/moodle (Composer) Apr 30, 2022

Missing authorization in Moodle Moderate

CVE-2022-0984 was published for moodle/moodle (Composer) Apr 30, 2022

Improper authorization in Keycloak Moderate

CVE-2022-1466 was published for org.keycloak:keycloak-core (Maven) Apr 27, 2022

Incorrect Authorization in cross-fetch Moderate

CVE-2022-1365 was published for cross-fetch (npm) Apr 17, 2022

Permissions bypass in SmallRye Moderate

CVE-2020-1729 was published for io.smallrye.config:smallrye-config (Maven) Mar 18, 2022

Incorrect Authentication in shopware Moderate

CVE-2022-24748 was published for shopware/core (Composer) Mar 10, 2022

Incorrect Authorization and Exposure of Sensitive Information to an Unauthorized Actor in scrapy Moderate

CVE-2022-0577 was published for scrapy (pip) Mar 1, 2022

Exposure of Resource to Wrong Sphere in microweber Moderate

CVE-2022-0762 was published for microweber/microweber (Composer) Feb 27, 2022

Improper Authorization in dolibarr/dolibarr Moderate

CVE-2022-0731 was published for dolibarr/dolibarr (Composer) Feb 24, 2022

Incorrect authorization in Drupal core Moderate

CVE-2022-25270 was published for drupal/core (Composer) Feb 18, 2022

Incorrect Authorization in Drupal core Moderate

CVE-2020-13676 was published for drupal/core (Composer) Feb 12, 2022

Incorrect Authorization in Apache Solr Moderate

CVE-2018-11802 was published for org.apache.solr:solr-core (Maven) Feb 9, 2022

Partial authorization bypass on document save in xwiki-platform Moderate

CVE-2022-23615 was published for org.xwiki.platform:xwiki-platform-oldcore (Maven) Feb 9, 2022

Incorrect Authorization in keycloak Moderate

CVE-2020-1725 was published for org.keycloak:keycloak-parent (Maven) Feb 9, 2022

Improper Input Validation in Apache Pulsar Moderate

CVE-2021-41571 was published for org.apache.pulsar:pulsar (Maven) Feb 2, 2022

Incorrect Authorization in calibreweb Moderate

CVE-2022-0273 was published for calibreweb (pip) Jan 31, 2022

Insufficient user authorization in Moodle Moderate

CVE-2022-0334 was published for moodle/moodle (Composer) Jan 28, 2022

bookstack is vulnerable to Improper Access Control Moderate

CVE-2021-4194 was published for ssddanbrown/bookstack (Composer) Jan 8, 2022

Permissions not properly checked in Invenio-Drafts-Resources Moderate

CVE-2021-43781 was published for invenio-app-rdm (pip) Dec 6, 2021

kimai2 is vulnerable to Improper Access Control Moderate

CVE-2021-3992 was published for kevinpapst/kimai2 (Composer) Dec 3, 2021

bookstack is vulnerable to Improper Access Control Moderate

CVE-2021-4026 was published for ssddanbrown/bookstack (Composer) Dec 1, 2021

EC-CUBE Improper access control in Management screen Moderate

CVE-2021-20841 was published for ec-cube/ec-cube (Composer) Nov 25, 2021

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

180 advisories