GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,150
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,268
npm 3,762
NuGet 678
pip 3,447
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,631

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

244 advisories

Filter by severity

Sort by

Least recently updated

An inconsistent user interface issue was addressed with improved state management. This issue is... Moderate Unreviewed

CVE-2020-9942 was published May 24, 2022

Cross-origin iframes that contained a login form could have been recognized by the login autofill... Moderate Unreviewed

CVE-2020-26962 was published May 24, 2022

IBM App Connect Enterprise Certified Container 1.0.0, 1.0.1, 1.0.2, 1.0.3, and 1.0.4 could allow... Moderate Unreviewed

CVE-2020-4785 was published May 24, 2022

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari... Moderate Unreviewed

CVE-2019-8771 was published May 24, 2022

A vulnerability has been identified in Desigo Insight (All versions). The device does not... Moderate Unreviewed

CVE-2020-15793 was published May 24, 2022

A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) ... Moderate Unreviewed

CVE-2019-13924 was published May 24, 2022

It was possible to recreate previous cursor spoofing attacks against users with a zoomed native... Moderate Unreviewed

CVE-2021-43546 was published Dec 9, 2021

By displaying a form validity message in the correct location at the same time as a permission... Moderate Unreviewed

CVE-2021-38508 was published Dec 9, 2021

Due to an unusual sequence of attacker-controlled events, a Javascript alert() dialog with... Moderate Unreviewed

CVE-2021-38509 was published Dec 9, 2021

Through a series of navigations, Firefox could have entered fullscreen mode without notification... Moderate Unreviewed

CVE-2021-38506 was published Dec 9, 2021

In onCreate of various files, there is a possible tapjacking/overlay attack. This could lead to... High Unreviewed

CVE-2022-20520 was published Dec 20, 2022

Improper Restriction of Rendered UI Layers or Frames in GitHub repository openemr/openemr prior... Unknown Unreviewed

CVE-2022-2734 was published Aug 10, 2022

IBM Robotic Process Automation 21.0.0 could allow a remote attacker to hijack the clicking action... Moderate Unreviewed

CVE-2022-22503 was published Oct 6, 2022

A vulnerability, which was classified as problematic, has been found in SourceCodester Gym... Moderate Unreviewed

CVE-2022-2800 was published Aug 13, 2022

A vulnerability in the web-based interface of Cisco HyperFlex Software could allow an... Moderate Unreviewed

CVE-2019-1975 was published May 24, 2022

IBM WebSphere Application Server - Liberty Admin Center could allow a remote attacker to hijack... Moderate Unreviewed

CVE-2019-4285 was published May 24, 2022

The response header has not enabled X-FRAME-OPTIONS, Which helps prevents against Clickjacking... Moderate Unreviewed

CVE-2022-3260 was published Dec 8, 2022

IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 could allow a remote attacker to... Moderate Unreviewed

CVE-2019-4217 was published May 24, 2022

Improper Restriction of Rendered UI Layers or Frames in GitHub repository polonel/trudesk prior... Moderate Unreviewed

CVE-2022-1803 was published May 21, 2022

SmartBear CodeCollaborator v6.1.6102 was discovered to contain a vulnerability in the web UI... Moderate Unreviewed

CVE-2021-41657 was published Mar 11, 2022

An improper implementation of the new iframe sandbox keyword <code>allow-top-navigation-by-user... Moderate Unreviewed

CVE-2022-29911 was published Dec 22, 2022

Service Workers did not detect Private Browsing Mode correctly in all cases, which could have led... Moderate Unreviewed

CVE-2022-45417 was published Dec 22, 2022

Use tables inside of an iframe, an attacker could have caused iframe contents to be rendered... Moderate Unreviewed

CVE-2022-45420 was published Dec 22, 2022

If a custom mouse cursor is specified in CSS, under certain circumstances the cursor could have... Moderate Unreviewed

CVE-2022-45418 was published Dec 22, 2022

IBM CICS TX 11.1 could allow a remote attacker to hijack the clicking action of the victim. By... Moderate Unreviewed

CVE-2022-34162 was published Aug 2, 2022

Previous 1 2 … 6 7 8 9 10 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

244 advisories