GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
124 advisories
Filter by severity
Authentication Bypass by Spoofing vulnerability in IP2Location Download IP2Location Country...
Moderate
Unreviewed
CVE-2023-37865
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in pluginkollektiv Antispam Bee allows Accessing...
Moderate
Unreviewed
CVE-2023-41134
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in 10up Restricted Site Access allows Accessing...
Moderate
Unreviewed
CVE-2023-48753
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in yonifre Maspik – Spam blacklist allows...
Moderate
Unreviewed
CVE-2023-48271
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in miniorange Malware Scanner allows Accessing...
Moderate
Unreviewed
CVE-2023-52176
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in FeedbackWP Rate my Post – WP Rating System...
Moderate
Unreviewed
CVE-2023-51667
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in WPMU DEV Branda allows Accessing Functionality...
Moderate
Unreviewed
CVE-2023-51542
was published
Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in Metagauss RegistrationMagic allows Accessing...
Moderate
Unreviewed
CVE-2023-51543
was published
Jun 4, 2024
Multiple products that implement the IP Encapsulation within IP standard (RFC 2003, STD 1)...
Moderate
Unreviewed
CVE-2020-10136
was published
May 24, 2022
WithSecure through 2022-08-10 allows attackers to cause a denial of service (issue 3 of 5).
Moderate
Unreviewed
CVE-2022-38164
was published
Nov 8, 2022
Insufficient data validation in Downloads in Google Chrome prior to 124.0.6367.60 allowed a...
Moderate
Unreviewed
CVE-2024-3843
was published
Apr 17, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability
Moderate
Unreviewed
CVE-2024-30058
was published
Jun 13, 2024
Certain http endpoints of Checkmk in Checkmk < 2.3.0p10 < 2.2.0p31, < 2.1.0p46, <= 2.0.0p39...
Moderate
Unreviewed
CVE-2024-6163
was published
Jul 8, 2024
Authentication Bypass by Spoofing vulnerability in Patreon Patreon WordPress allows Functionality...
Moderate
Unreviewed
CVE-2024-37430
was published
Jul 9, 2024
An issue was discovered in WUZHICMS version 4.1.0, allows an attacker to execute arbitrary code...
Moderate
Unreviewed
CVE-2024-31008
was published
Apr 3, 2024
An issue in Typora v.1.8.10 and before, allows a local attacker to obtain sensitive information...
Moderate
Unreviewed
CVE-2024-31784
was published
Apr 16, 2024
Skype for Business and Lync Spoofing Vulnerability.
Moderate
Unreviewed
CVE-2022-26910
was published
Apr 16, 2022
Grafana Escalation from admin to server admin when auth proxy is used
Moderate
CVE-2022-35957
was published
for
github.com/grafana/grafana
(Go)
May 14, 2024
An IP Spoofing vulnerability has been discovered in Likeshop up to 2.5.7.20210811. This issue...
Moderate
Unreviewed
CVE-2024-41432
was published
Aug 7, 2024
Typecho v1.3.0 was discovered to contain a Client IP Spoofing vulnerability, which allows...
Moderate
Unreviewed
CVE-2024-35538
was published
Aug 19, 2024
Typecho v1.3.0 was discovered to contain a race condition vulnerability in the post commenting...
Moderate
Unreviewed
CVE-2024-35539
was published
Aug 19, 2024
In WS_FTP Server versions before 8.8.8 (2022.0.8), a Missing Critical Step in Multi-Factor...
Moderate
Unreviewed
CVE-2024-7745
was published
Aug 28, 2024
Django WSGI Header Spoofing Vulnerability
Moderate
CVE-2015-0219
was published
for
Django
(pip)
May 17, 2022
Verification check bypass in Gate One
Moderate
CVE-2020-19003
was published
for
gateone
(pip)
Oct 12, 2021
ProTip!
Advisories are also available from the
GraphQL API