GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,473
Composer 4,168
Erlang 30
GitHub Actions 19
Go 1,975
Maven 5,150
npm 3,698
NuGet 654
pip 3,314
Pub 11
RubyGems 882
Rust 831
Swift 35

Unreviewed advisories

All unreviewed 232,631

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

210 advisories

Filter by severity

Sort by

Least recently updated

Clickjacking vulnerability in Clibo Manager v1.1.9.12 in the '/public/login' directory, a login... Moderate Unreviewed

CVE-2024-10454 was published Oct 31, 2024

Opening an external link to an HTTP website when Firefox iOS was previously closed and had an... Critical Unreviewed

CVE-2024-10004 was published Oct 16, 2024

A missing delay in directory upload UI could have made it possible for an attacker to trick a... Moderate Unreviewed

CVE-2024-9397 was published Oct 1, 2024

Multiple prompts and panels from both Firefox and the Android OS could be used to obscure the... Moderate Unreviewed

CVE-2024-8388 was published Sep 3, 2024

Select options could obscure the fullscreen notification dialog. This could be used by a... Moderate Unreviewed

CVE-2024-7518 was published Aug 6, 2024

A select option could partially obscure security prompts. This could be used by a malicious site... High Unreviewed

CVE-2024-7523 was published Aug 6, 2024

The issue was addressed with improved UI handling. This issue is fixed in macOS Sonoma 14.6,... Moderate Unreviewed

CVE-2024-40817 was published Jul 30, 2024

A Cross Window Forgery vulnerability exists within GitLab CE/EE affecting all versions from 16.3... Moderate Unreviewed

CVE-2024-2177 was published Jul 9, 2024

IBM Sterling B2B Integrator Standard Edition 6.1 and 6.2 does not restrict or incorrectly... Moderate Unreviewed

CVE-2023-42011 was published Jun 27, 2024

LB-LINK BL-W1210M v2.0 was discovered to contain a clickjacking vulnerability via the... High Unreviewed

CVE-2024-33377 was published Jun 14, 2024

By manipulating the fullscreen feature while opening a data-list, an attacker could have overlaid... Moderate Unreviewed

CVE-2024-5698 was published Jun 11, 2024

Improper Restriction of Rendered UI Layers or Frames vulnerability in Automattic Jetpack allows... Moderate Unreviewed

CVE-2023-47774 was published Apr 24, 2024

An unauthenticated remote attacker can deceive users into performing unintended actions due to... Moderate Unreviewed

CVE-2024-3911 was published Apr 23, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed

CVE-2024-29981 was published Apr 5, 2024

Data was not properly sanitized when decoding a QUIC ACK frame; this could have led to... High Unreviewed

CVE-2024-2613 was published Mar 19, 2024

Microsoft Edge for Android Spoofing Vulnerability Moderate Unreviewed

CVE-2024-26167 was published Mar 7, 2024

Vulnerability whereby an attacker could send a malicious link to an authenticated operator, which... Moderate Unreviewed

CVE-2024-1890 was published Feb 26, 2024

Sametime is impacted by lack of clickjacking protection in Outlook add-in. The application is not... Moderate Unreviewed

CVE-2023-45698 was published Feb 10, 2024

Implicit intent hijacking vulnerability in Smart Suggestions prior to SMR Feb-2024 Release 1... Low Unreviewed

CVE-2024-20810 was published Feb 6, 2024

The issue was addressed with improved UI handling. This issue is fixed in iOS 16.2 and iPadOS 16... Moderate Unreviewed

CVE-2022-32919 was published Jan 11, 2024

A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior... Moderate Unreviewed

CVE-2023-6093 was published Dec 31, 2023

The timing of a button click causing a popup to disappear was approximately the same length as... Moderate Unreviewed

CVE-2023-6867 was published Dec 19, 2023

In Red Hat Advanced Cluster Security (RHACS), it was found that some security related HTTP... Moderate Unreviewed

CVE-2023-4958 was published Dec 12, 2023

An Improper Restriction of Rendered UI Layers or Frames in the Schweitzer Engineering... Moderate Unreviewed

CVE-2023-2265 was published Nov 30, 2023

If an attacker needed a user to load an insecure http: page and knew that user had enabled HTTPS... Moderate Unreviewed

CVE-2023-6211 was published Nov 21, 2023

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

210 advisories