GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+
180 advisories
Filter by severity
An unauthenticated remote attacker can deceive users into performing unintended actions due to...
Moderate
Unreviewed
CVE-2024-3911
was published
Apr 23, 2024
NetApp Snap Creator Framework before 4.3P1 allows remote authenticated users to conduct...
Moderate
Unreviewed
CVE-2016-5710
was published
May 24, 2022
Microsoft Edge (Chromium-based) Spoofing Vulnerability
Moderate
Unreviewed
CVE-2024-29981
was published
Apr 5, 2024
Improper Restriction of Rendered UI Layers or Frames in RDT400 in SICK APU allows an unprivileged...
Moderate
Unreviewed
CVE-2023-5103
was published
Oct 9, 2023
Palantir Gotham was found to be vulnerable to a bug where under certain circumstances, the...
Moderate
Unreviewed
CVE-2023-30961
was published
Sep 27, 2023
A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6...
Moderate
Unreviewed
CVE-2023-4229
was published
Aug 24, 2023
The permission request prompt from the site in the background tab was overlaid on top of the site...
Moderate
Unreviewed
CVE-2023-37455
was published
Jul 12, 2023
A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that...
Moderate
Unreviewed
CVE-2022-43378
was published
Jul 6, 2023
A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could...
Moderate
Unreviewed
CVE-2022-32517
was published
Jul 6, 2023
A clickjacking vulnerability in the HCL BigFix OSD Bare Metal Server version 311.12 or lower...
Moderate
Unreviewed
CVE-2023-23343
was published
Jun 23, 2023
Missing HTTP headers (X-Frame-Options, Content-Security-Policy) in KNIME
Business Hub before 1.4...
Moderate
Unreviewed
CVE-2023-3140
was published
Jun 7, 2023
AeroCMS v0.0.1 is vulnerable to ClickJacking.
Moderate
Unreviewed
CVE-2022-46061
was published
Dec 13, 2022
Improper Restriction of Rendered UI Layers or Frames in GitHub repository notrinos/notrinoserp...
Moderate
Unreviewed
CVE-2022-2965
was published
Aug 24, 2022
Intesync Solismed 3.3sp allows Clickjacking.
Moderate
Unreviewed
CVE-2019-15930
was published
May 24, 2022
vBulletin before 5.5.4 allows clickjacking.
Moderate
Unreviewed
CVE-2019-17131
was published
May 24, 2022
A clickjacking vulnerability was found in Limesurvey before 3.17.14.
Moderate
Unreviewed
CVE-2019-16175
was published
May 24, 2022
Mailvelope prior to 3.1.0 is vulnerable to a clickjacking attack against the settings page. As...
Moderate
Unreviewed
CVE-2019-9147
was published
May 24, 2022
Java Server Pages (JSPs) provided by the SAP NetWeaver Process Integration (SAP_XIESR and...
Moderate
Unreviewed
CVE-2019-0305
was published
May 24, 2022
** DISPUTED ** Jitsi-2.10.5550 was discovered to contain a vulnerability in its web UI which...
Moderate
Unreviewed
CVE-2022-36736
was published
Sep 9, 2022
Improper Restriction of Rendered UI Layers or Frames in Apache nifif
Moderate
CVE-2018-17192
was published
for
org.apache.nifi:nifi
(Maven)
Dec 20, 2018
Vulnerability whereby an attacker could send a malicious link to an authenticated operator, which...
Moderate
Unreviewed
CVE-2024-1890
was published
Feb 26, 2024
Insufficient clickjacking protection in the Web User Interface of Intel AMT firmware versions...
Moderate
Unreviewed
CVE-2017-5697
was published
May 17, 2022
Kerio Connect 8.0.0 through 9.2.2, and Kerio Connect Client desktop application for Windows and...
Moderate
Unreviewed
CVE-2017-7440
was published
May 17, 2022
Google Chrome before 42.0.2311.90 does not properly consider the interaction of page navigation...
Moderate
Unreviewed
CVE-2015-1241
was published
May 17, 2022
Clickjacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x...
Moderate
Unreviewed
CVE-2017-4015
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API