Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,762
NuGet
678
pip
3,447
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

181 advisories

Loading
In Red Hat Advanced Cluster Security (RHACS), it was found that some security related HTTP... Moderate Unreviewed
CVE-2023-4958 was published Dec 12, 2023
A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior... Moderate Unreviewed
CVE-2023-6093 was published Dec 31, 2023
If an attacker needed a user to load an insecure http: page and knew that user had enabled HTTPS... Moderate Unreviewed
CVE-2023-6211 was published Nov 21, 2023
The timing of a button click causing a popup to disappear was approximately the same length as... Moderate Unreviewed
CVE-2023-6867 was published Dec 19, 2023
The issue was addressed with improved UI handling. This issue is fixed in iOS 16.2 and iPadOS 16... Moderate Unreviewed
CVE-2022-32919 was published Jan 11, 2024
Clickjacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x... Moderate Unreviewed
CVE-2017-4015 was published May 17, 2022
Google Chrome before 42.0.2311.90 does not properly consider the interaction of page navigation... Moderate Unreviewed
CVE-2015-1241 was published May 17, 2022
Kerio Connect 8.0.0 through 9.2.2, and Kerio Connect Client desktop application for Windows and... Moderate Unreviewed
CVE-2017-7440 was published May 17, 2022
Insufficient clickjacking protection in the Web User Interface of Intel AMT firmware versions... Moderate Unreviewed
CVE-2017-5697 was published May 17, 2022
Vulnerability whereby an attacker could send a malicious link to an authenticated operator, which... Moderate Unreviewed
CVE-2024-1890 was published Feb 26, 2024
Improper Restriction of Rendered UI Layers or Frames in Apache nifif Moderate
CVE-2018-17192 was published for org.apache.nifi:nifi (Maven) Dec 20, 2018
MarkLee131
** DISPUTED ** Jitsi-2.10.5550 was discovered to contain a vulnerability in its web UI which... Moderate Unreviewed
CVE-2022-36736 was published Sep 9, 2022
Java Server Pages (JSPs) provided by the SAP NetWeaver Process Integration (SAP_XIESR and... Moderate Unreviewed
CVE-2019-0305 was published May 24, 2022
Mailvelope prior to 3.1.0 is vulnerable to a clickjacking attack against the settings page. As... Moderate Unreviewed
CVE-2019-9147 was published May 24, 2022
A clickjacking vulnerability was found in Limesurvey before 3.17.14. Moderate Unreviewed
CVE-2019-16175 was published May 24, 2022
vBulletin before 5.5.4 allows clickjacking. Moderate Unreviewed
CVE-2019-17131 was published May 24, 2022
Intesync Solismed 3.3sp allows Clickjacking. Moderate Unreviewed
CVE-2019-15930 was published May 24, 2022
Improper Restriction of Rendered UI Layers or Frames in GitHub repository notrinos/notrinoserp... Moderate Unreviewed
CVE-2022-2965 was published Aug 24, 2022
AeroCMS v0.0.1 is vulnerable to ClickJacking. Moderate Unreviewed
CVE-2022-46061 was published Dec 13, 2022
Missing HTTP headers (X-Frame-Options, Content-Security-Policy) in KNIME Business Hub before 1.4... Moderate Unreviewed
CVE-2023-3140 was published Jun 7, 2023
A clickjacking vulnerability in the HCL BigFix OSD Bare Metal Server version 311.12 or lower... Moderate Unreviewed
CVE-2023-23343 was published Jun 23, 2023
A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that could... Moderate Unreviewed
CVE-2022-32517 was published Jul 6, 2023
A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists that... Moderate Unreviewed
CVE-2022-43378 was published Jul 6, 2023
The permission request prompt from the site in the background tab was overlaid on top of the site... Moderate Unreviewed
CVE-2023-37455 was published Jul 12, 2023
A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6... Moderate Unreviewed
CVE-2023-4229 was published Aug 24, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database